Hi pgr
thank you. I may disable the waf rule that is blocking the login.
However, please, why not code the login so it will not trigger the modsec waf rule in the first place? Many other PHP apps like Wordpress work seamlessly with waf. Unless improving the SuitCRM code is not possible, for some reason. Please, let me know.
Rgs
IM