The first question which will come in your mind is why you need to change WordPress login URL?. So don’t worry here I will clear your doubt. I think you may know that anyone can open your WordPress login URL easily. Because once you installed the WordPress, it creates by default two login URLs, which is wp-admin and wp-login.php. Most of the people know only wp-admin and not wp-login.php. Ok so now you can get the idea how much it is easy for any hackers to open yours by default WP login URL.
Actually, the first step of hackers is to find your WordPress login URL to hack your site. The Brute Force Attacks is a very common issue for WordPress users, so this custom login URL help you to save from Brute Force Attacks on your blog / website.
For Brute Force Attacks there is three steps for hackers to hack your site / blog.
- Find Your Login URL:- So make sure to change your WordPress login URL.
- Guess Your Username:- Don’t use username such as admin or simple like this.
- Guesss Your Password:- Don’t use your name, birthdate or any easily guessing words. Make your password complex by including number, symbol, small & capital letters etc.
After seeing the above three steps now, you can understand that if you will not change your by default login URLs then there is a chance of being attacked on your blog / website and now hackers need to guess your username and password only.
But if you will change WordPress login URL than hackers work is tougher because now hackers need to find out your login URL, username and password so there is a less chance to hack your blog / website.
How To Change WordPress Login URL For Security?
So finally here I am going to show you the steps for how to change your WordPress login URL by using Lock Down WP Admin plugin.
Before I will show you the steps I want to give you some information about the Lock Down WP Admin plugin. Actually, I am personally using this plugin for a long time and this the reason here I want to share with you and save you from Brute Force Attacks.
Lock Down WP Admin plugin is using more than 50,000 users. This plugin will simply hide yours by default URLs which is wp-admin and wp-login.php when you are not logged in. If any hacker will try to access your by default URLs then it will redirect to 404 error page. The best thing about this plugin is that it does this thing without touching any WordPress core files.
So let’s begin with installing Lock Down WP Admin plugin. After installing the plugin, you need to activate the plugin.
Next step after activating the plugin you can be able to see the Lockdown WP tab in the left panel of WordPress admin area so you need to just click on it.
When you click on Lockdown WP tab you can see the setting page for changing WordPress login URL like below image. In the setting page, you need to do only two things, for your reference I have drawn two arrows in the below image. So the first step is to select the checkbox and the second step is that you need to add your custom URL to hide your wp-admin and wp-login.php. For example, if you add in that box “customloginurl” then you need to access your blog like this “http://www.example.com/customloginurl”.
After do the above steps just click on save options button and that’s it.
Note:- After saving this setting you can’t be able to access your by default URLs so remember or noted down your custom URL.
After going through this post, now you can easily change your WordPress login URL less than a minute. I hope this article help you to change WordPress login URL for improving the security of your blog / website. You may also need to check the Basic And Useful Tips For WordPress Security.
If this article helps you then please share with your friends on your social media networks.