Skip to content
Patchstack Docs

Login protection

Accessible for the Community (paid), Developer and Business plan users.

On the Login protection subpage you can:

  • Block access to wp-login.php
  • Set a new login URL for the wp-admin page
  • Ban IPs that fail multiple login attempts
  • Set a specific time, where in between users can log in to WordPress
  • Enable setting up the Two Factor Authentication from WordPress site
  • Add IP addresses to login whitelist
  • Block certain IP addresses from being able to log in

How our New Login URL feature works

If you define a new URL for login, it works like a security token for your wp-admin. Entering your custom URL once, will whitelist your IP to access regular wp-admin URL again.

Example usage:

Let’s say you enter “myadmin” to the New URL field.
To log in to your WordPress admin panel, you need to:

  1. First visit your secret URL (for example**“yourdomain.com/myadmin”**).
  2. Your IP gets whitelisted and from that moment on, you can log in from the regular “yourdomain.com/wp-admin” again.
  3. Other visitors are blocked from wp-admin page, unless they know your security token (in this case /myadmin).