great but tier 4 and websites management is a nightmare
Im on Tier 4 (unlimited websites). Plugin works great, it replaces plugins like malware scanner, firewall and limit login attempts. All in one solution. For this part - 5 tacos.
Main problems that I can see when I want to protect my customers websites. Someone noticed the same issues like me, here, in other reviews:
1. to see websites in the WP Security Ninja Admin Dashboard (Websites tab) this website MUST have the same email address as you registered as a WPSN customer/login. If your customers (their websites) will have own email in the WP settings (which is most obvious scenario) this customer's website wont be visible here, so you can't manage (activate/deactivate) license usage on that website.
2. you have only one license code for unlimited websites, when you click in - you will see how many websites in fact uses that license code. With point #1 it may give you different results - on Websites tab you will se 10 websites (that have your email address in WP settings) and here, in license details you may see 100 sites (because your customers copied license code and used it in other owned websites without your knowledge)
3. yes, it is possible to copy license code because your customer seeing "Account" tab in their WP Dashboard and may copy license code and use it elsewhere. To avoid that situation you should go to your license, set option "This license is activated on my client site" AND use "restrict sites" to whitelabel all websites that belongs to your clients that paid for license access. Then, account tab will switch to the mode where your details (and license code) is hidden/asterisked.
Much easier would be if one license is per one website, no matter what was email address associated with that site. You just generate new license for each new website or deactivate license when customer not paying.
4. last but not least - whitelabel option is... complicated and confusing. When you install plugin on your customer website, after plugin and license activation you must go to the "Whitelabel" tab (in customer's WP Admin) and turn on this feature (and hange names, logo etc). It means that your customers must give you admin rights to its website. It means also that you must replicate this procedure with every customer. Other plugins works like this - I can personalize/whitelabel plugin details in plugin account dashboard and when I download it (or my customer downloads it) it is already whitelabeled.
And because of that complications -1 taco so total score is 4 tacos.
Verified purchaser
Lars_Koudal
Sep 15, 2025Hi there,
Thank you so much for this incredibly detailed and honest review! We truly appreciate you taking the time to share your experience, especially as a Tier 4 (unlimited websites) user. We're thrilled to hear that Security Ninja is working great for you as an all-in-one solution for malware scanning, firewall, and login attempts – that's exactly what we aim for.
You’ve also raised some very important points about agency management and white-labeling. Let me address them clearly:
Website visibility: Right now the "Websites" tab in your Security Ninja account dashboard relies on the admin email matching your license email. We know this is not ideal for agencies where clients use their own email addresses, and this limitation is on our list to improve.
License usage and unauthorized installs: It’s true that a license key could be copied. Our "restrict sites" feature can help here by allowing you to whitelist exactly which client domains are allowed. That way the license cannot be reused elsewhere and your license details are hidden from clients.
White-label setup: To configure white-labeling, administrator access to the site is required. We believe this is a reasonable expectation for initial setup of a security plugin. Technically another person could install the plugin and you could rename remotely via MainWP afterwards, but if the owner has already installed it for you, there isn’t much benefit in changing the name later.
Settings management: We already provide a way to activate the license automatically during installation, and we are considering a similar approach for the settings so you could preconfigure the plugin simply by uploading and activating. This is planned for a future update and should make rollouts much smoother for agencies.
Great feedback, it helps us focus on the areas that matter most for agency workflows.