How To Hide Wp Admin Login Page

As a WordPress user, I understand the importance of maintaining the security of my website. One key aspect of website security is protecting the login page of the WordPress admin area. By default, the login page is accessible through the /wp-admin or /wp-login.php URL, making it an easy target for potential attackers.

In this article, I will guide you through the process of hiding the WordPress admin login page to enhance the security of your website. Please note that this method involves making changes to your website’s files, so it’s crucial to create a backup before proceeding.

Step 1: Choose a Custom URL

The first step is to select a custom URL for your WordPress admin login page. This will replace the default /wp-admin or /wp-login.php URL, making it more challenging for hackers to find your login page.

For this tutorial, let’s say we want to change the URL to /my-secret-login-page. You can choose any unique text for the custom URL to ensure its exclusivity.

Step 2: Edit the .htaccess File

The next step is to edit the .htaccess file, which is located in the root directory of your WordPress installation. This file controls the server’s configuration and allows us to modify URL structures.

Using a text editor, open the .htaccess file and add the following code at the bottom:

RewriteRule ^my-secret-login-page$ wp-login.php [NC,L]

Make sure to replace “my-secret-login-page” with the custom URL you have chosen.

Step 3: Save and Upload the .htaccess File

After adding the code to the .htaccess file, save the changes and upload it back to your website’s root directory using an FTP client or a file manager provided by your hosting provider.

Ensure that the file is named “.htaccess” (without any file extension) and is placed in the correct directory. It is essential to double-check the file’s location to avoid any issues.

Step 4: Test the Custom Login Page URL

Once the .htaccess file is uploaded, it’s time to test the new custom URL for your WordPress admin login page.

Open your web browser and type your website’s domain name followed by the custom URL you selected. For example, if your domain is “,” you would enter “” in the browser’s address bar.

If everything is set up correctly, you should see the familiar WordPress login page, but with your custom URL in the address bar. Congratulations, you have successfully hidden your WordPress admin login page!


Securing your WordPress website is crucial in today’s digital landscape. By hiding the admin login page, you add an extra layer of protection against potential attacks. Remember to choose a custom URL that is unique and difficult to guess.

Always keep a backup of your website files before making any changes, and regularly update your WordPress installation and plugins to ensure optimal security.

By taking these proactive measures, you can significantly reduce the risk of unauthorized access to your WordPress admin area and help safeguard the integrity of your website.