How to add HTTP Basic Authentication (htpasswd protection)

[rifathasan]

Another way to lock out an admin is to add HTTP authentication. This requires you to enter your username and password before you can access the WordPress login page. Note: This method should not typically be used on e-commerce or membership sites. But it can be a very effective way to prevent bots from getting onto your site.

.htpasswd gambling data singapore authentication prompt
Apache
If you are using cPanel hosting, you can enable password protected directories from your control panel. To set it up manually, you will first need to create a . file .htpasswd. You can use this handy generator tool . Then upload this file to a directory in your wp-admin folder, like this:


Then create a file .htaccess with the following code and upload it to the directory /wp-admin/. Make sure you update the directory path and username.


The only caveat with this method is that it breaks AJAX (admin-ajax) on the front end of your site. Some third-party plugins require this. So you will also need to add the following code to the above .htaccess file.


If you are using Nginx, you can also restrict access using HTTP Basic Authentication .

Enable .htpasswd protection
If you host your WordPress site on Kinsta, you can use our easy password protection tool (htpasswd) in your MyKinsta dashboard. You can find it in the Tools section of your site. Just click Enable, choose a username and password, and you’re good to go! Once enabled, your WordPress site will require authentication to access it