Really Simple Security sends email notifications for important events, such as when features are enabled or when vulnerabilities are detected in installed plugins or themes on your WordPress site.
To ensure that 2FA codes and security notifications are reliably delivered to your inbox, email address verification is required. You can verify your email address in the plugin by navigating to Settings -> Security -> General. This step is used to confirm that your server is properly configured to send email, an important requirement for both email-based 2FA and notifications.
Note: Email notifications are not enabled by default, but we highly recommend turning them on so you’re promptly informed of security actions that may need your attention.
What if the emails do not arrive?
The plugin’s emails (such as 2FA codes) are sent from your own server, as Really Simple Security uses the standard WordPress mail function to send them.
If the plugin’s emails do not arrive in your inbox, please double-check if they might have been sent to your spam-folder; or use a plugin like WP Mail SMTP (set-up instructions here) to properly configure e-mail on your WordPress site. This is a more reliable method to send emails.
Once your site is correctly configured to send email: re-send the Verification Email in the plugin by clicking Resend email in the sidebar notice (located at Security -> Settings -> General), which should arrive as expected now that you’ve corrected the SMTP settings.
