Lockdown WP Admin conceals the administration and login screen from intruders. It can hide WordPress Admin (/wp-admin/) and and login (/wp-login.php)
Very good and nice plugin, Please update it time to time, However it compatible with WP 4.0, Thanks once again Sean Fisher :)
Works as intended, hiding sensible areas of the site (login and admin) from intruders.
There are some issues, like when logout inside the backend you are redirected to the frontend and then have logout again.
But overall works fine!
It's really easy to use and customize.
I was using iThemes Security and it caused so many problems. This plugin did the trick without the headaches.
I was skeptical at first of using this due to low # of users giving feedback, but after having locked out of using 2 other free hide-url plugins, I tried this one. And this works perfectly with Wordfence or Rublon.
FYI, I previously only installed Wordfence 2-step authentication, but still kept getting bot attacks daily & the last resort was I couldn't even login into my account because my host temporarily shuts down my site due to the high frequency of the attacks. I kept searching for a simple custom login url (since I already have other security plugins).
Glad I found this! Thank you.
I use this plugin on all the websites I administer. This has cause lots and lots of 404's on my login pages and less headache for me. My login url is now a secret in its own, triple protection equals a username that is not admin or any user name on the site + a strong password + a hidden login url. I am thankful for plugins like this. Thank you very much for a very effective plugin!
The installation and teh setup is simple but after activation impossible to login. Google authenticator does not accepting code. Itheme also give error 404 on the custom login page.
Too mucht trouble :(
If your WordPress installation is in a subfolder, the plugin doesn't quite work as advertised. The changed login URL is correct, but once you enter your credentials on that form, you get a 404 page. However, you are actually logged in at this point so you can manually type an admin page to head to, which is a serious annoyance.
This is yet another plugin that can't properly use site_url() and home_url().
This plugin is easy to install and set up, and works great.
With all the hack-rats out there running bots that scan for WP-Login and WP-Admin so they can start pounding sites with brute force attacks and sql injection attempts targeted at the login screen, you can save yourself a massive layer of headaches and alleviate some pressure on your server with this one simple, elegant little plugin. I've been installing it on all the 3.9+ sites I manage, and it works like a charm. I'll add that it doesn't interfere with WordFence security (I'm not sure about other firewalls), and the two working together in combination go a long way toward hardening your site against the most common attacks.
The one incompatibility I've noticed is with Woo Commerce, but it's not a deal-breaker. On the WooCommerce sites I run, when Lockdown redirects from WP-Login or WP-Admin to a 404 Page Not Found page, some php errors get thrown and the css breaks. This can be partially remedied by making sure you're not showing php errors (there are good instructions for this in the WP Codex), but it should eventually be addressed by the developer. Sean, any chance you might take a look at this sometime soon?
You must log in to submit a review. You can also log in or register using the form near the top of this page.