Skip to Main Content

How to protect your login page on WordPress

Divi: the easiest WordPress theme to use

Divi: The best WordPress theme of all time!

With over 901.000 downloads, Divi is the most popular WordPress theme in the world. It is complete, easy to use and comes with more than 62 free templates. [Recommended]

Would you like to protect the WordPress login page?

A website usually has many chances of dealing with brute force and malicious login attempts. There are several ways to solve this problem, the best of which is to deploy multiple strategies. So in this tutorial we will provide you with the best way to get rid of this problem and hide your WordPress login page.

But before, if you have never installed WordPress discover How to Install a WordPress Blog in 7 Steps et How to search, install and activate a WordPress theme on your blog

Then back to why we are here.

Why hide your login page?

Malicious connections are inevitable especially if you have allowed the connection for everyone. This won't work for you, as you need to make your login page easy for users to find. However, if your website is not a member's area website and login attempts are usual for admin, author, editors and contributor, hiding the login page is the same as the reduction of malicious connection attacks.

You can also use other security measures, such as limit connection attempts, captcha or ReCaptcha, while waiting for strong passwords, unique names and the installation and configuration of a good security plugin.

You can use " the dark Which is a valid security layer as part of the security policy. Another useful method is to make your login page hard to find if you want to reduce the number of malicious login attempts.

Install WordPress in its own directory

You might know how to install WordPress in a subdirectory, which is not difficult. First, if you have an existing WordPress installation, create a full backup of your site and save it where it cannot be deleted. Most tutorials will use a subdirectory name like: ou 

Alternatively, you can use something that is not easy to guess, but try to remember. You can choose the name of the directory, unique, but easy to remember which will be difficult for others.

Hide login page url and redirect wp-login.php

When you access wp-login.php, WordPress by default can load the login page. Type wp-admin instead to automatically redirect you to wp-login.php.

Easily create your website with Elementor

Elementor allows you to easily create any website design with a professional look. Stop paying expensive for what you can do yourself. [Free]

Despite taking some steps to avoid standard WordPress behavior, someone can easily access your page. The next step is to block access to wp-login.php, after redirecting to a 404 page. You can redirect to another page rather than your login page and replace it with a custom login URL. So no one could easily guess and easily access the page.

Let me remind you to find something unique that might be easy to remember, but difficult for everyone. Try to use acronyms like

Where "pdc" means you are connecting (login page), which might be quite easy to remember. You can use a plugin to block access to wp-login.php and configure a custom login url. I will now offer you some plugins that will help you in this direction.

1. WPS Hide Login

protect login page - Wps hide login wordpress plugin

With the help of this plugin, you can use custom url like a standard login URL. After installing and activating the plugin, " / Wp-admin "And" /wp-login.php Will be inaccessible and will be replaced by a custom URL that you have chosen.

Download | Demo | Web hosting

2. WP Hide & Security Enhancer

Wp hide wordpress plugin

Are you looking for the best WordPress themes and plugins?

Download the best plugins and WordPress themes on Envato and easily create your website. Already more than 49.720.000 downloads. [EXCLUSIVE]

This plugin hides the fact that your site uses WordPress. And it also hides the fact that your site is a WordPress site creating custom login URLs while completely disabling default URLs. It can also boast of more than 1000 active installations that are not huge.

Download | Demo | Web hosting

3. Cerber Limit Login Tritem

Cerber wordpress plugin

A well known plugin limiting connection attempts and active on more than 10 sites. It has a 000 out of 4,9 star rating. Additionally, Cerber can also help you limit login attempts to hide the standard login URL in favor of a custom URL.

Download | Demo | Web hosting

4. IThemes Security

Ithemes security pro

This plugin has over 700 active installations and 000 out of 4 stars. IThemes Security is the best and most famous plugin on the WordPress theme directory. You can solve many difficult tasks with the help of this plugin. Its features can create a custom login URL and redirect “wp-login.php” to a 5 page or page of your choice.

Download | Demo | Web hosting

Other recommended resources

We also invite you to consult the resources below to go further in the grip and control of your website and blog.


Here ! That's all for this tutorial, I hope it will allow you to effectively protect your login page on WordPress.. Feel free to share the tip with your friends on your social networks.

Easily create your Online Store

Download free WooCommerce, the best e-commerce plugins to sell your physical and digital products on WordPress. [Recommended]

However, you can also consult our resources, if you need more elements to carry out your projects of creation of Internet sites, by consulting our guide on WordPress blog creation.

But, in the meantime, let us know your comments and suggestions in the dedicated section.


This article features 0 comments

Leave a comment

Your email address will not be published. Required fields are marked with *

This site uses Akismet to reduce unwanted. Learn more about how your comments data is used.

Back To Top