WHMCS User and IP Control offers a range of additional security measures to safeguard your installation:
All admin and client logins are stored in the database.
Clients can be notified of logins via email.
Clients can view their recent login history.
Clients can view a list of their unique logins.
Admins have access to client login history.
Multiple failed logins may result in IP being locked out.
Rate limiting activity ensures bad actors are locked out.