Hi @jadeatkins,
Did you enable the Hide Backend feature ? If so, are you using the hidden slug to access the WordPress Admin login page ? Once the Hide Backend feature is enabled an email (Subject: WordPress Login Address Changed) containing the new slug is send to the Administrator(s) of the site. If you have forgotten the slug, you can find it in that email.
If you have no access to that email (for whatever reason) there is a simple procedure to be able to login again. Just follow the instructions from the FAQ below:
How Do I Disable All Features If I Can’t Access My Site?
After login navigate to Security > Settings > Advanced > Hide Backend to lookup the hidden login slug. Don’t forget to undo the recommended changes from the FAQ afterwards!
+++ To prevent any confusion, I’m not SolidWP +++
Oh, one other thing. Directory Listing seems to be enabled on your site. This can lead to information leakage. I recommend disabling Directory Listing, learn how. Or simply navigate to Security > Settings > Advanced > System Tweaks and enable the Disable Directory Browsing setting.
Hi nlpro,
Thank you kindly for the provided information! You are a life saver. I didn’t think anyone would write or be able to help me. I have a quick question. I did have the hide backend enabled but I never received an email from WP stating that (Subject: WordPress Login Address Changed). I know my slug but Im not sure why I never received the email. Nevertheless, once I have hide backend enabled how do I get the new url to login into the account correctly?
Also, I do have browse directory enabled but since I had the Solid Security deactivated for the time being it was listing my directory. Thank you though for being so kind to point that out. I really appreciate your help and patience with me.
Hi @jadeatkins,
Nevertheless, once I have hide backend enabled how do I get the new url to login into the account correctly?
Simply use the URL https://www.bytebellebrigade.com/%5Bslug%5D which should give you access to the login page (where [slug] should be substituted with your chosen Hide Backend slug). Then login with valid credentials.
Once you are back in we can have a look at the Logs page to see whether the plugin send the Hide Backend email and if so who is (are) the recipient(s).
I tried adding the slug but it didn’t work. I also changed the slug and saved the changes and it still didn’t work. I even cleared the cache. I turned the plugin on and then off again as well. However, if I use (sitename.com/wp-admin) it works. Even though that should be redirected to the not found page. I double checked and the hide backend button is on and active. It’s weird bc the feature works for one site but it’s not working for my other site.
Hi @jadeatkins,
That sounds like a typical caching issue. Is the site using CloudFlare?
Yes it is using Cloudflare
Hi @jadeatkins,
Ok, I see. Have a look at this recent topic. It’s not about the Hide Backend feature but it does contain some usefull info related to CloudFlare caching.
Hi @jadeatkins, I’m checking in here to see if your site admin URL (with HBE enabled) is still returning 404 Not Found. If so, please try the suggestions on the CF thread (thank you, @nlpro) and let us know if it helped.
Also, regarding the “WordPress Login Address Changed” email not being sent, Solid Security only generates the emails, but delivery is up to your server. I’d recommend checking if there’s any issue with your mail server. If the site isn’t using SMTP, try setting it up to see if it helps send the Solid Security emails.
Looking forward to your feedback!
Hi @jadeatkins, I hope all is set on your end. Tracking notifications on this forum can become tricky over time, and since we haven’t received a response, I’ll mark this post resolved.
If you still require further assistance, feel free to open a new support topic, and we’d be happy to assist.
Thank you!
