Skip to content
Home » News » How to Disable reCaptcha in Magento 2 

How to Disable reCaptcha in Magento 2 

reCaptcha is a security feature in Magento 2 that helps to prevent bots and spam on a store. Check how to enable it here. At the same time, it can make logins and checkouts difficult for real users. If you need to disable it, follow this simple guide.

What is reCaptcha in Magento 2?

Create New Customer Account screenshot with 'I am not a robot' reCaptcha

reCaptcha is a tool that protects your store by blocking automated bots. It is used in different areas, such as:

  • Admin Login
  • Customer Login
  • Checkout Forms
  • Contact Forms

reCaptcha appears after several failed login attempts to prevent bots from accessing your eCommerce site. Magento 2 offers different types of reCaptcha, including reCAPTCHA v2, v2 invisible, and v3. These versions help protect user data. You may read more about Google reCaptcha here

While it improves security, it can sometimes create issues for customers. If you decide to turn it off, be aware of potential security risks.

Things to Consider Before Disabling reCaptcha

Before turning off reCaptcha, keep these points in mind:

  1. Increased Fraud Risk
    • Without reCaptcha, bots might try placing fake orders or hacking into accounts.
  2. Store Security
    • reCaptcha helps protect sensitive customer information. If you disable it for checkout, consider using it at least for admin and login pages.
  3. Alternative Security Measures
    • If you turn off reCaptcha, use other security measures like:
      • SSL/TLS encryption
      • Address Verification System (AVS)
      • Other strong fraud detection tools
  4. Captcha Expiry and Reload Time
    • If reCaptcha expires too quickly, customers may have to reload the page, which might cause disappointment and frustration.
  5. Login Attempt Limits
    • One can adjust how many failed login attempts would trigger a captcha challenge.

Method 1: Disable reCaptcha from Magento Admin Panel

  1. Log in to Magento Admin
    • Navigate to your Magento 2 admin panel and log in.
  2. Go to reCaptcha Settings
    • Click on Stores in the left sidebar.
    • Under Settings, select Configuration.
    • Expand Security and click on Google reCaptcha.
Sccreenshot of the Google reCaptcha Configuration section in Magento admin panel
  1. Disable reCaptcha for Forms
    • Under Google reCaptcha, find the Admin Panel and Frontend Forms sections.
    • For each form type (Login, Contact Us, Checkout, etc.), set Enable reCaptcha to No.
Screenshot of the Google reCaptcha Enable for Login section in Magento Admin panel
  1. Save Configurations
    • Click the Save Config button at the top-right.
    • Clear the cache by navigating to System > Cache Management and clicking Flush Magento Cache

Method 2: Disable reCaptcha Using Command Line (CLI)

It is also possible to disable reCaptcha using the command line.

  1. Access Your Server via SSH
    • Connect to your Magento 2 server using SSH.
  1. Run the Disable Command

 Run the following commands to turn off reCaptcha:

php bin/magento module:disable Magento_ReCaptchaFrontendUi Magento_ReCaptchaAdminUi

           To  disable the Admin login captcha:

php bin/magento config:set admin/captcha/enable 0

           To disable the Frontend captcha:

            php bin/magento config:set customer/captcha/enable 0

Emergency Commandline to disable reCaptcha for Admin user forgot password form:

bin/magento security:recaptcha:disable-for-user-forgot-password

Emergency Commandline to disable reCaptcha for the Admin user login form:

bin/magento security:recaptcha:disable-for-user-login

3. Clear Cache

After disabling, clear the cache with:

php bin/magento cache:flush

4. Verify Changes

  • Try accessing the forms where reCaptcha was previously enabled to confirm it is absent.

Method 3: Disable reCaptcha from the Core_config_table

To disable reCaptcha directly from the core_config_data table in Magento 2, follow these steps:

1. Access the Database

Connect to your Magento 2 database using phpMyAdmin, MySQL CLI, or any other database management tool.

2. Locate the reCaptcha Configuration

Run the following SQL query to find the relevant reCaptcha settings:

SELECT * FROM core_config_data WHERE path LIKE '%recaptcha%';

This will display all reCaptcha-related settings stored in the core_config_data table.

3. Disable reCaptcha

To disable reCaptcha, update the values in the table:

UPDATE core_config_data
SET value = 0 
WHERE path IN (

    'customer/captcha/enable',

    'admin/security/enable_recaptcha_backend',

    'msp_securitysuite_recaptcha/frontend/enabled',

    'msp_securitysuite_recaptcha/backend/enabled'

);

4. Clear Magento Cache

After making changes, clear the cache by running the following command in CLI:

php bin/magento cache:flush

5. Verify Changes

Try logging into the admin panel or frontend forms where reCaptcha was previously enabled to confirm it’s disabled.

By following these steps, reCaptcha will be turned off directly from the database without using the admin panel.

Conclusion

It is recommended to think twice before turning off the reCaptcha due to security threats to your store. If you weighed all the pros and cons and still decided to disable it, in Magento 2, it can be done through the admin panel, command line, or directly from the core_config_data table, depending on your needs and preferences, as discussed above. 

Author

Tags:

Leave a Reply

Your email address will not be published. Required fields are marked *