---
title: "Update Security Settings Ability: Change a Security Feature State in WordPress"
url: https://nexterwp.com/docs/nexter-update-security-settings/
date: 2026-05-29
modified: 2026-05-29
author: "sandip patel"
description: "The nexter/update-security-settings ability updates a single Nexter Extension security feature at a time, setting its enabled state and optional configuration values."
word_count: 234
---

# Update Security Settings Ability: Change a Security Feature State in WordPress

## Key Takeaways

- Update Security Settings ability modifies a single Nexter Extension security feature per call, requiring the feature name and its enabled state.
- Supported features include advance-security, limit-login-attempt, captcha-security, custom-login, and svg-upload, with optional configuration values.
- Use nexter/get-security-settings to read current feature values before making updates to ensure accurate configurations.

The **nexter/update-security-settings** ability updates a single Nexter Extension security feature per call. Pass the feature name, its enabled state, and optional configuration values. Supported features include login protection, CAPTCHA, custom login URL, advanced security headers, and SVG upload control.

## Key Takeaways

The feature parameter is required. Valid values are: advance-security, limit-login-attempt, captcha-security, custom-login, svg-upload.

This ability updates one feature per call. Run it multiple times to update multiple features.

The values object is optional and varies by feature. Omitting it leaves existing configuration unchanged.

Use nexter/get-security-settings to read current feature values before updating.

## Required Setup

This ability ships with Nexter Extension (Free). If you do not have it installed, follow the guide on how to install and activate Nexter Extension first.

## Parameters

**feature** (string, required) is the security feature to update. Options: advance-security, limit-login-attempt, captcha-security, custom-login, svg-upload.

**enabled** (boolean, optional) sets whether the feature is active.

**values** (object, optional) contains feature-specific configuration. Keys vary depending on the feature being updated.

## What It Returns

The ability returns **success** (boolean) and the updated feature object with its new **enabled** state and **values**.

## When to Use This Ability

Enable login attempt limiting and configure the max attempts and lockout duration for a site.

Set a custom login URL slug to replace the default WordPress login path.

Enable SVG uploads for a site that needs to support SVG image files.

## Related Documentation

Get Security Settings Ability: nexter/get-security-settings

Update Performance Settings Ability: nexter/update-performance-settings

Update SMTP Settings Ability: nexter/update-smtp-settings