Skip to content
Help Center

Hide your WordPress login: the easiest way

Learn how to hide access to your WordPress backend and reduce unnecessary exposure.

At Bacan, our application firewall blocks hundreds of thousands of attacks against WordPress websites every day. Even though websites hosted with us benefit from strong protection, one extra step that can increase your website's security is hiding the login area.

Everyone knows that the WordPress admin area is usually reached through www.example.com/wp-admin/.

If the login area is not hidden, that page will immediately ask for a username and password.

Changing the wp-admin access path

Although it is never ideal to fill a WordPress installation with plugins, we can reasonably say that for a secure installation this is one of the essential plugins. It uses very few resources and is extremely easy to use.

The plugin is WPS Hide Login. It is actively maintained and changes the login URL without modifying your core WordPress files.

If you run a WordPress website, installing it is highly recommended.

How do you configure WPS Hide Login?

The configuration is simple. You only need to choose the new login URL. You can also define what should happen if someone without authorization tries to open the old login address and triggers a 404 response.

We hope this tip helps you keep your website more secure.