Security: Changing Url Log-in
Why Change the Admin Login URL?
The default WordPress login URL is “yoursite.com/wp-admin” or “yoursite.com/wp-login.php,” which makes it easy for hackers to target your website. By changing the admin login URL, you create an additional layer of security, making it harder for unauthorized users to access your WordPress dashboard. Note: do not use predictable names or words such as Login, signin.
Two ways to change the log in Url
1) Use a plug in: Easy Way
2) Change your .htaccess file
We will go over both:
Plug-in –
Go to your WordPress Dash board and click on add a new plugin – Enter into the search Bar Security
Check out which plug in you like, make sure that it is updated and good reviews. My favorite is AIOS or all in One WP Security- Lot of website will push WPS Hide Login – but I found out is does have conflicts with other plugins. Go a head and install- Make a backup of website before activating in case there is conflict. This is a good practice to do with any updates of themes or plugins. Most plugins will lead you through the process for set up. Done!
The second method is adding rewrite rules to the .htaccess file.
**Please Note:** Before proceeding, it’s crucial to back up your website and have access to your website’s files through FTP or a file manager in your hosting control panel.
1. Access Your Website’s Files:
– You can use an FTP client like FileZilla or access your hosting control panel’s file manager to access your website’s files.
2. Locate the .htaccess File:
– The .htaccess file is usually located in the root directory of your WordPress installation. If you can’t find it, make sure your FTP client or file manager is set to display hidden files.
3. Edit .htaccess:
– Right-click on the .htaccess file and choose to edit it. If you’re using an FTP client, you might need to download the file, edit it locally, and then upload it back to your server.
4. Add Rewrite Rules:
– To change the admin login URL, you’ll need to add rewrite rules to your .htaccess file. Here’s an example of how to do it:
# Change the login URL
RewriteEngine On
RewriteRule ^mynewlogin$ /wp-login.php [L]
In the example above, “mynewlogin” is the custom login URL you want to use. You can replace it with your preferred login URL.
5. Save and Upload:
– After adding the rewrite rules, save the .htaccess file and upload it back to your server if you downloaded it earlier.
6. Test the New Login URL:
– Open a web browser and try accessing your new login URL, e.g., `https://yoursite.com/mynewlogin`. Ensure that it takes you to the login page, and you can log in as usual.
7. Keep the New URL Secure:
– Remember to keep your new login URL confidential and share it only with trusted users who need access to your WordPress dashboard.
Changing the login URL manually using .htaccess provides an extra layer of security, but it also requires a bit more technical knowledge. Be cautious when editing the .htaccess file, as errors can potentially break your website. Always have a backup of your .htaccess file and your entire website before making any changes. If you’re uncomfortable with manual changes, consider using a security plugin, as mentioned, for a more user-friendly approach.
Changing your login is an important 1st step to Securing your website.