WordPress Login: Everything You Need to Know for 2020

WordPress-Login-Everything-You-Need-to-Know

Logging in WordPress is one of the first things that you must do when you use or start building your WordPress website. Nowadays, even if you want to use one of the simplest services found on the internet, you need to log in or sign up for it. So, there is no surprise that you’ll need to do it on WordPress as well. Along with being one of the most basic tasks to start, WordPress login is also one of the most searched key phrases in WordPress. This is because there are many things you can do with the WordPress login page or URL although it’s just a simple term. And in this article, we will cover up everything about it. 

You can perform various tasks about the WordPress login page in WordPress. Some of the most common tasks include creating a custom login page, customizing it, hiding it, limiting the number of login attempts and most importantly accessing the WordPress login page. Because it’s obvious that you won’t be going anywhere if you can’t access the login page, we will provide you with the best information you need to know about it in this article.

How does the WordPress Login URL Work?

Before accessing or finding the WordPress Login page, it can be really helpful if you come to know how it works first. Generally, it works like just any other login page that you find on the internet. It just consists of an addition on your website URL in most cases. All you need to do is add wp-admin on the path of your website. 

For example, if the name of your website is website.com, then the URL for your WordPress Login page would be website.com/wp-admin

Then all you need to do is just enter your login credentials and you will be directed to your website. 

default-login-page-wordpress-login-browser
Note: It’s the same case if your website URL is with a subdomain name or whether You have WordPress installed in a subdirectory. If your website is installed with a subdirectory like website.com/blog/, then the login URL is website.com/blog/wp-admin.

Or, if your website is with a subdomain named subdomain.website.com, your login URL will be subdomain.website.com/wp-admin.

How to Find and Save the WordPress Login Page URL?

The WordPress login page will not be accessible to you every time you open your website without the login path. But once you login to your dashboard from the above steps, you can find and save your WordPress login URL. This can also be very useful if you lose or can’t remember your login URL due to some unfortunate reasons. It can be then shown on the main menu header. 

Just go to Appearance>>Menus from your WordPress dashboard. Then, open the custom links option from Edit Menus and enter your WordPress login URL and the Link Text for it. And finally, click on the Add to Menu button and then Save Menu. 

add-to-menu-wordpress-login

You’ll be able to see the link text to your WordPress Login page on your website header menu. When you click on it, you will be redirected to the login page instantly and then you can log in to your dashboard. 

Note: We don’t recommend this procedure as it might not be secure for your website. You can hide it as well which will be discussed further.

Secure Your WordPress Login Page

Your WordPress login page is a very important part of your website. This is where it all starts for your WordPress website as well as for the hackers and malware if you are unlucky. But don’t worry, we have a few steps and tips that you can follow to keep your login page safe from these harmful dwellers. So, let’s look at some of the best steps.

1.  Hide Your WordPress Login Page

The fewer users who have access to your WordPress dashboard the better. This is an obvious fact. So one of the best ways to keep it safe is by hiding the WordPress login page. Most of the users can easily access your login page by just adding the path of /wp-admin/ at the end of your website. But, if you use the plugin WPS Hide Login, you can hide it from spammers and hackers.

wps-hide-login-wordpress-login

Just install and activate the plugin and go to Settings>>General from your dashboard. Then scroll down to the WPS Hide Login section. Here, you can now change the Login URL and Redirection URL for your WordPress login page. Set the login URL for which you want and then click on save changes. By default, the redirection URL is a 404 redirect.

Now, when you enter the previous URL of your website i.e., website.com/wp-admin, it will respond with a 404 redirect. You’ll need to enter the specific login URL entered in the settings to access your WordPress login page. Then, you can provide the login URL to other users who need to access your website dashboard.

You can also use the Redirection plugin to hide or change your login URL. It can be helpful to stop the WordPress registration spam sent directly to the admin as well. 

2. Limit the Login Attempts

It is one of the easiest yet highly effective ways of securing your website. You see, most of the attackers use a combination of usernames and passwords to hack into your website. In order to stay away from these brute force attacks, you can just limit the number of login attempts on your WordPress login page. 

This can be done instantly by installing a plugin. As mentioned in the name itself, Limit Login Attempts Reloaded lets you limit the number of login attempts for your WordPress dashboard.

limit-login-attempts-reloaded

It is pretty easy to use as well. First, install and activate the plugin. Then, goto Settings>>Limit Login Attempts from your WordPress dashboard. 

limit-login-attempts-reloaded-settings-wordpress-login

Here, you can set the number of retries along with additional options for lockout times. You can even be notified if anyone has exceeded the number of attempts and are on lockout. There are also options to whitelist users according to their IP addresses which is always great for securing your website. After you’ve filled the options with necessary details, save it.

Now, you can see that the remaining login attempts can also be seen when the WordPress login page is loaded. After it exceeds for a particular user, they are locked out for any attempts until the time you entered in the settings.

limit-login-attempts-reloaded-remaining-wordpress-login

3. Use a Full Website Protection System

If you are starting a new website, you must install a system that provides your WordPress website with maximum protection. There are many awesome WordPress security plugins for it. But some plugins like the WordFence Security can do wonders for the all-round protection of your website.

wordfence-security-for-wordpress-login

One of its highlighting features is two-factor authentication. So, even after the password is entered, there is a second factor to login like a phone or email verification. It would be difficult for the attackers to have access to the second factor. 

4. Use Strong Passwords

Passwords were invented for a reason and the reason was to have access to the people or users with the exact same password only. But with the advancement of technology, the number of skilled hackers are also increasing day by day. So you must create a very strong password for your WordPress login access. Make sure it is 10-15 characters long and contains symbols and numbers as well.

You can use tools like Strong Password Generator to get a better password for your website. 

5. Don’t Use “Admin” as Your Username

The term “admin” is the default username mostly when it comes to anything related to computers and technologies. So, the first guess that the hackers might try to use as a username is “admin”. Forget about the hackers, even I personally have been able to log in to a few custom internet service websites by trying “admin” as the username and password and I am just a writer. So, it might be very easy for the hackers.

However, it’s very unlikely for most users to put passwords as admin for a WordPress website. But using it as a username is also not a good idea when hackers are around.

6. Upgrade to HTTPS:

Upgrading your website to HTTPS will not only just increase the security for your WordPress login, but it will make your whole website even more secure

It will keep the attackers from getting to your website by encrypting a connection between your web server and your web browser. So the hackers and other security attacks can’t get to your website when you’re transforming data from one server to another.  

While you’re at it, make sure that you follow some WordPress security tips to secure your websites as well.

Customize Your WordPress Login Page

We all know WordPress for its immense amount of customizable features. Similarly, the same goes for the WordPress login page for your website as well. The default login page of WordPress might seem very dull and boring to some users. If you need help with this, there are tons of plugins in the WordPress Repository to customize your login page. Out of them LoginPress by WPBrigade is one of the best ones. It is quite easy to use as it uses the Live customizer through which you can edit your login page effortlessly.

loginpress-

To use it, obviously, you need to install and activate it first. Then you can start customizing your WordPress login page. Goto LoginPress>>Customizer. You’ll be redirected to the live customizer of the theme. You can also access it from Appearance>>Customizer from the dashboard and goto LoginPress.

loginpress-wordpress-login

After that, open the LoginPress option. Now, you can make a ton of modifications on your WordPress login page here. It has the option to add and edit the logo, main background, welcome and error messages, form footer and even additional CSS. You can also edit the forms, color and size of the buttons, login form, and forget form. Some options like reCAPTCHA and Google Fonts are only available on the Pro version.

Make sure you make all the necessary changes for your login page. Once all of them are done, publish it. If you open your WordPress login page when not logged in, you can view your newly redesigned login page.

How to Create a Custom WordPress Login Page and Form

We’ve already mentioned that some users might find the default WordPress login page very dull and boring. Similarly, some of the users would also want to create an entire custom login page in order to login to their WordPress dashboard. If you are one of these users, we do have an awesome solution for you too. And the solution is to use the User Registration plugin.

user-registration-wordpress-login

Initially, you will need to install and activate it like any other plugins. Although it’s a plugin to create registration forms, you can use it to create your own custom WordPress login page as well. First, create a new page and paste the shortcode given below to create a new default dashboard on this page. Then Publish it. Use the following shortcode:

[user_registration_my_account] 

A new default dashboard will be created for your website when you login. When you logout and try to login again the next time, you will be able to see your new custom WordPress login page with your login form. 

custom-login-page-login-form
You can also add the redirect parameters on your shortcode if you want to redirect to a specific page as soon as you log in. Just add the parameter “redirect_url” like the following example:

[user_registration_my_account redirect_url=”sample page”]

Similarly, you can also add a parameter “logout_redirect” like the example given below to redirect to a specific page after you log out.

[user_registration_my_account logout_redirect=”page slug”]

Additional Helpful Tips for WordPress Login Page and URL

When it comes to logging in on your WordPress dashboard, the main concerns are mostly about security. But here are a few tips to make your user experience for login better.

1. Use “Remember Me” Checkbox for Quick Login:

As the name suggests itself, the “Remember Me” checkbox will store your WordPress username and password when you log in the first time. The next time you try to log in after you log out, your login credentials will be automatically updated on the Username and Password text boxes. 

remember-me

Once you check the Remember Me option, it sets a cookie which is a very small file. This cookie states that you want to stay logged in so don’t ask you to log in the next time. However, it is not a very secure measure so it expires after some time depending on your computer or browser. Then, you will be asked to log in again.

2. Add Login through Social Media Options:

With the increase in social media platforms, people tend to rely on it more. So, adding a login option from any social media can also be helpful for you if necessary. Even though it might not be recommended by most for security reasons, depending on your needs, you can add social media login options to login from your WordPress login page. 

All you need to do is add a plugin like Nextend Social Login or WordPress Social Login. Then you can use it to create a social media login form for your WordPress login page with just a few clicks. 

Wrapping Up:

Here are most of the basic things that you can do with your WordPress login page. Some of these have also been highly beneficial for many WordPress users. Therefore, we strongly recommend that you follow these tips at least to keep your website secured. If you want to change the appearance of your WordPress login page as well, this can be really helpful for your WordPress website. 

We hope that all this information was pretty useful for you. Do make sure to view some more interesting articles from the links given below:

mm

Sajan Ratna Shakya

2 thoughts on “WordPress Login: Everything You Need to Know for 2020

Leave a Reply

Your email address will not be published. Required fields are marked *

Scroll to top

Pin It on Pinterest