License Manager → Settings. Options are grouped into sections.
| Setting | Controls |
|---|
| Default max activations | Seat default for newly created licenses. |
| Auto-delivery trigger status | The order status that triggers key delivery (default completed). |
| Hide license key in email | Omit the raw key from the delivery email. |
| Enable QR codes | Render a QR code of the key on the license detail screen / in delivery. |
| Setting | Controls |
|---|
| Force HTTPS for REST API | Reject non-HTTPS requests to the licensing endpoints. |
| Setting | Controls |
|---|
| Default overage strategy | deny / allow 1.25× / allow 2× for new licenses. |
| Setting | Controls |
|---|
| Heartbeat interval (seconds) | How often devices should ping (default 300). |
| Dead-machine cull window (seconds) | How long before a silent device is reclaimed (default 600). |
| Log retention (days) | How long activation-log rows are kept. |
| Setting | Controls |
|---|
| Enable native subscription engine | Master switch for recurring billing. |
| Retry schedule (days after failure) | Comma-separated dunning offsets (e.g. 3,7,14). |
| Webhook retry attempts | Max delivery retries for failed webhooks. |
One-click maintenance actions:
| Tool | Action |
|---|
| Export licenses | Download all licenses as CSV. |
| Import licenses | Create licenses from a CSV (duplicates skipped). |
| Rebuild revocation list | Regenerate and re-sign the CRL. |
| Purge activation logs | Delete log rows older than the retention window. |
| Re-roll signing keypair | Danger zone — replace the Ed25519 signing keypair (invalidates previously issued signed payloads; the encryption key is left intact). |
Secrets can be pinned in wp-config.php instead of the database:
WPLM_SIGNING_KEYPAIR, WPLM_ENCRYPTION_KEY, WPLM_FINGERPRINT_HMAC,
WPLM_WEBHOOK_SECRET. Set wplm_keep_data_on_uninstall to retain data on
uninstall.