How to Secure Login Admin on Wordpress

My special thanks to Blogger and Visitors. If You like this, please help us to share:

Protect Our Admin Login Now!!

The security is very important on a web site, although that will be explained about Wordpress Security. Wordpress is a CMS that is used by beginner blogger or professional. Wordpress has given a good security standard on blog or our site, uses Wordpress CMS.

Let's secure our Website or Blog, has been using Wordpress CMS :

1. Downlad http authentication plugin
   This plugin allows you to use your webserver for authentication, in our case Apache


2. We've already covered how to add two-factor authentication to Apache using radius.


3. Be sure to add your WiKID username as an administrator in Wordpress. Obviously, you can add the Admin user to WiKID as well, but it might be better to have a separate account.


Let's restrict /wp-admin/ and wp-login.php in Apache:


Satisfy all
AuthType Basic
AuthBasicProvider xradius
AuthName "Please enter your username and WiKID one-time passcode."
AuthXRadiusAddServer "192.168.1.171:1812" "openid_secret"
AuthXRadiusTimeout 7
AuthXRadiusRetries 2
require valid-user


Satisfy all
AuthType Basic
AuthBasicProvider xradius
AuthName "Please enter your username and WiKID one-time passcode."
AuthXRadiusAddServer "192.168.1.171:1812" "openid_secret"
AuthXRadiusTimeout
AuthXRadiusRetries 2
require valid-user


Now when you try to access the administration section of Wordpress, you will be prompted for your WiKID username and the one-time passcode.

Note: Be sure, you have covered apache authentication using radius, before use these article.