Over the past few months, I’ve been seeing a sharp increase in random internet dudes trying to log into my WordPress dashboard. Of all the attempts, there are these couple of IP addresses that are relentlessly trying their best to log into my dashboard using different usernames and passwords.
Obviously, I’m using a unique and hard to guess username and password. Additionally, I’m also using the limit login attempts plugin to stop brute force attacks and block offending IP addresses. So, I generally don’t worry about random login attempts. However, like I said, the relentless login attempts from a couple of IP addresses just irritated me.
To make matters worse, the offending IP addresses are somehow bypassing the Limit Login Attempts plugin’s protection and trying quite a few times every single day to log into my WordPress dashboard.
Finally, I got fed up with these constant login attempts and notification emails. So, I wanted to change WordPress login URL so that no random user can find the login page easily.
If you want to block random internet users from finding out your WordPress login page and trying to log in, here’s how to change WordPress login page URL.
Change WordPress Login Page URL
Now, one of the things you should keep in mind before changing login page URL in WordPress is that the process should be easy. This makes sure that you can change the login URL as and when needed.
Most of all, you should also be able to revert back to the default login URL as easily as changing the URL.
Like many things on WordPress, you can easily change WordPress login URL using a free plugin called WPS Hide Login. The good thing about this plugin is that it doesn’t literally change the login page URL or add any rewrite rules. Instead, it just intercepts the default login URL and redirects it to the 404 page. You can only access the login page with the URL slug of your choice.
To get started, go to “Plugins > Add New,” search for “WPS Hide Login” and install it.
After installing, go to “Settings > General” and scroll down. Here, you will see a new section called WPS Hide Login. Simply enter a new login slug in the given field and click “Save Changes.” In my case, I chose my new login slug as “mycustomloginpage.” You can choose whatever you like. Just make sure that it is easy to remember and hard to guess.
Don’t forget to bookmark the new WordPress login page URL. If you forget, you will not be able to login via the default wp-login.php URL.
However, if you forgot the new login page URL and got locked out, launch your favorite FTP client, log in to your site, go to “wp-content > plugins” and rename wps-hide-login folder to deactivate the plugin. Then you can log in with the default WordPress login page URL.
Hope that helps. Comment below sharing your thoughts and experiences about using the above method to change login URL in WordPress.