Changing the WordPress login page URL is an effective way to enhance your website’s security by reducing the risk of brute-force attacks. Below are the methods to achieve this:
1.
The easiest and safest way to change the WordPress login URL is by using a plugin. Here’s how:
-
:
-
Log in to your WordPress dashboard.
-
Navigate to Plugins > Add New and search for “WPS Hide Login.”
-
Install and activate the plugin.
-
-
:
-
Go to Settings > WPS Hide Login.
-
Enter your desired custom login URL in the “Login URL” field (e.g.,
example.com/my-login). -
Optionally, set a “Redirection URL” for users attempting to access the default login page (
wp-login.phpor/wp-admin).
-
-
:
-
Click “Save Changes.”
-
Use the new custom login URL to access your site in the future.
-
2.
Some comprehensive security plugins also allow you to change the login page URL as part of their features:
-
:
-
Go to Advanced Settings > Hide Backend.
-
Enter a custom login slug (e.g.,
my-custom-login) and save changes. REF.
-
-
:
-
Navigate to the plugin settings and enable the “Rename Login Page” option.
-
Set your desired custom login URL.
-
3.
If you prefer not to use plugins, you can manually change the login URL, though this requires technical expertise.
-
Create a backup of your
wp-login.phpfile. -
Rename
wp-login.phpto a unique name (e.g.,my-secret-login.php). -
Update all instances of
wp-login.phpin your WordPress files with the new name. -
Save changes and test your new login URL.
-
Backup your
.htaccessfile. -
Add a redirect rule in
.htaccess:textRewriteRule ^custom-login$ https://www.example.com/wp-login.php [NC,L]
Replace
custom-loginwith your desired path. REF.
-
Always back up your site before making changes.
-
Bookmark or securely save your new login URL to avoid lockout.
-
Test thoroughly after implementation to ensure functionality.
By using these methods, you can effectively hide your WordPress login page from attackers and improve overall site security.