As before I talked about Securing WordPress Blog through Bulletproof Security plugin and methods that I follow to secure my blog, now I want to discuss about another way to give more protection to my WordPress Blog through hiding its common log in url which is “wp-admin”. Ah! Sounds interesting? Yes I can easily now hide my “wp-admin” through Sean Fisher’s great plugin, which is Lockdown WP Admin. Let me tell you about some key features of this plugin.
The reason why I like this plugin is because of its amazing features.
It Hides “Wp-Admin”:
The very first reason I like this plugin as it solved the problem of being attacked by hiding “Wp-admin” default url.
It Creates Custom URL:
How it will be amazing to know that we can use our own name even instead of “wp-admin”? Ofcourse it is amazing. But don’t use your own name I use different instead of default.
It Provides HTTP Authentication to Give More Protection:
Another cool reason to like this plugin is that it also provides HTTP Authentication. How it works? When I sign in to my WordPress Admin Interface, it asks me for the second user name and password which I have setup using this plugin.
How to Hide Wp-Admin and Make Custom URL to Login:
Setting up this plugin is so easy and require only some simple steps. So, let’s give a little bit more security to your WordPress Blog by hiding wp-admin and creating a custom url for yourself to log in.
Step 1: Install Lockdown WP Admin Plugin:
From the left side bar, navigate your mouse on “Plugins” and click “Add New” to install this plugin.
Type “Lockdown WP Admin” in Search bar and “Search” Plugin.
Now install plugin and activate it.
After activation, plugin setting tab will appear in left side bar. Scroll your mouse over “Lockdown WP” and select “Lockdown WP” as below.
Step 2: Hide “Wp-admin” and Create Custom URL:
I found this plugin very useful and easy to use. There is not very hard and fast way to configure all we have to do is to just follow two steps here to configure it through setting page,
On setting page, there is a check box by which you can hide Wp-admin. You will find it at top
Now Create Custom URL:
After checking box, type your desired url here what you want to use to log in to your WordPress Admin panel.
For example: By default WordPress login url is -> www.yourdomain.com/wp-admin, but here you can make it as you like as -> www.yourdomain.com/exampl as below.
If you use “login” as custom url, it will although accept, but will prompt you and suggest you to change it as it is less secured and can easily be guessed. If you use “login” as your custom url, it will give suggestion as below.
Step 3: Activate HTTP Authentication to Protect More:
I recommend using this method too just to make your WordPress Website super secured. Under this method, when we log in to WordPress Admin panel, it asks for the second user name and password to get access into Admin area.
When you login to your WordPress Admin Panel through your main id and password, a prompt will appear asking for secondary username and password. This adds more security to your Admin interface. Let’s see how to do this.
Set Option to Private Usernames/Passwords:
From the same setting page, chose third option as below.
Now Under the tab “Lockdown WP” select “Private Users”.
In this tab, you can set your secondary username and password to log in into WordPress Admin Interface. Give a Username and Password to the field and click “Save Options”.
Now, Log off to your WordPress Admin Panel and then try your-url.com/wp-admin. It will now show 404 error page. But your custom URL will work instead of Wp-admin. So, try using your custom url now, give your user name and password and then after prompt, give secondary username and password and log in finally
I hope you enjoyed this article. However there many more methods that may be used by most of other bloggers, but to me these methods work best for me to protect my WordPress Blog. If you have further questions, ask me in comments.
Don’t Be Harsh:
If you have liked this, please share it with your friends.