Defender, our answer to WordPress security, just beefed things up even more with his new Google reCAPTCHA feature! Google reCAPTCHA ensures that it’s a human that enters your site instead of automated spammers that can wreak havoc.
As you’ll see, it’s as easy as ever to get reCAPTCHA activated in just a few clicks. We’ll break it all down and show you how.
We’ll take a look at how to:
- Activate Google reCAPTCHA
- Choose a reCAPTCHA Type
- Configure reCAPTCHA
- Style reCAPTCHA
- Adding a reCAPTCHA Score
By the end of this brief article, you’ll know how to put the cap on bots and spammers with reCAPTCHA.
To get started, you’ll need to activate reCAPTCHA from Defender’s dashboard. That’s as easy as going to Tools, then Google reCAPTCHA.
Once there, click Activate.
As soon as you hit activate, it’s not ready to go unless you have your Site and Secret keys set up. Defender will let you know if you don’t.
No keys? Let’s create them. Defender makes this easy by having a link to get the keys created. Just click, you guessed it, Click Here.
Clicking this opens up a new tab on Google’s reCAPTCHA page.
The first thing you’ll do is name the Label. The Label helps you identify the site for future reference.
Once you have a label, the next part leads us to…
You now choose a reCAPTCHA Type in Defender and Google.
It’s important to note that during registration in Google, you’ll need to select the same reCAPTCHA type you selected in the Defender interface, as each reCAPTCHA type requires a different set of API keys.
It’s up to you if you want to pick a type in Defender or Google first. Either way, it doesn’t matter as long as they’re the same.
Since we’re already in Google, we’ll select a type here first. You have the option of reCAPTCHA v3 (verifies requests with a score) and reCAPTCHA v2 (verifies requests with a challenge).
Whatever you choose will create a unique key.
Once you decided which type is best for you, you’ll enter the domain and accept the reCAPTCHA Terms of Service. You can also opt to have alerts sent to the owner (you and your email).
Hit Submit, and it will generate your keys.
It’s now time to implement them in Defender, so we’ll head on back into Defender’s dashboard and get these activated!
For this example, I chose to create keys using reCAPTCHA v2. Therefore, I’ll select the same option in Defender.
You can pick between v2 Checkbox or v2 invisible for reCAPTCHA v2. For this demonstration, I’ll use v2 Invisible (I’ll touch more on v2 Checkbox and v3 a bit later).
Enter the site keys from Google in the spaces provided, click Save Changes at the bottom of the screen, and Defender will give you a preview of what your reCAPTCHA will look like.
Now that you know how to set up specific reCAPTCHA types, let’s…
There’s a lot you can do when it comes to configuring Defender’s reCAPTCHA. We’ll take a look at how to edit:
- Error Message
- reCAPTCHA Locations
As you’ll see, each customization option is simple to adjust however you’d like.
You can pick what language you want your reCAPTCHA to be in. By default, it’s on Automatic. That means that whatever language your WordPress site is in — the reCAPTCHA will be that language, too.
That being said, choose from tons of other languages in the dropdown. Or type in a language in the search bar.
As you can see, there are quite a few languages to choose from.
Once you have the language set up how you want it, click Save Changes.
It’s easy to create a custom error message to display when a user’s reCAPTCHA verification fails.
Just add the message you want and hit Save Changes.
Edit and change this message at any time.
reCAPTCHA Locations is where you choose the forms where reCAPTCHA human verification will be required. You can choose to have reCAPTCHA implemented for WordPress Login, Register, and Lost Password forms.
It’s just a matter of clicking which ones where you want reCAPTCHA to be deployed.
One-click is all it takes!
With Defender’s v2 Checkbox, you can style the reCAPTCHA in several ways.
The Size can be adjusted to either Normal or Compact from the dropdown menu.
When it comes to the Theme, you can pick between Light and Dark.
Check out how your reCAPTCHA looks by hitting Save Changes. Once doing so, it’ll show you a preview.
If all looks awesome, you’re all set! You can also go in and edit at any time if you’d like to make some adjustments.
reCAPTCHA v3 returns a score that is based on user interactions. This score can be adjusted and changed to wherever you want the verification to fail.
Change the Score Threshold to 0-1. One is very probable it’s a good interaction, and zero is very likely it’s a bot.
It can be changed quickly in Defender’s dropdown.
Pick a threshold between zero and one.
Hit Save Changes and your threshold is saved.
To help defend your site against bots and spammers, it’s as captivating as ever to use Defender’s Google reCAPTCHA for your WordPress site!
It will help ensure that your site is used by real humans for your forms, logins, and visitors — which assists with preventing abuse, stopping hackers from harvesting email addresses, and putting a hault to automated signups & registrations.
If you don’t have Defender, give it a try today for free. Also, for upgraded security features, try out Defender Pro with a free WPMU DEV 7-day trial. You’ll also get access to all of our other premium plugins, 24-7 service, our all-in-one WordPress site manager, The Hub, and more.
reCAPTCHA later!WordPress Developers