Create secure WordPress admin password

In this article I’ll show you how to generate a strong password to use for your WordPress site, and how to update WordPress to start using that newer more secure password as well.

These actions are being strongly recommended due to a recent WordPress wp-login brute force attack that has been ongoing affecting multiple web hosts.

Generate secure admin password and apply with phpMyAdmin

The following steps will walk you through logging into cPanel, using the built-in password generator to create a new strong secure password, and then applying that new password to your WordPress admin login directly via phpMyAdmin.

Below these steps, there are also instructions for updating your WordPress admin password via admin dashboard

  1. Login to cPanel.
  2. click on change password

    Under the Preferences section, click on Password & Security.

  3. click on password generator

    Next click on Password Generator.

  4. click on advanced options

    You can click on Advanced Options to control how your password is generated. Then copy the password given, and click Cancel

  5. click on cpanel home

    Click on the cPanel link at the top-left.

  6. click on phpmyadmin

    Under the Databases section, click on phpMyAdmin.

  7. click on wordpress database

    Click on the name of your WordPress database.

  8. click on wp users table

    Next click on the wp_users table.

  9. click on edit wp user

    Click on Edit beside your WordPress admin user.

  10. paste password select md5 click go

    In the user_pass field, paste your password by pressing Ctrl – V.

    From the drop-down, select MD5.

    Finally click on Go.

  11. phpmyadmin success of password change

    You should now see a success message from phpMyAdmin saying the database record was updated.

Update WordPress admin password via dashboard

If you already know how to create a very secure password, or you’ve generated one using the steps above, you can also update your WordPress admin password directly in the admin dashboard. Just follow these steps and you should have your password updated and secured in no time:

  1. Login to your WordPress dashboard with your insecure password.
  2. wordpress click on users

    From the left hand menu, click on Users.

  3. wordpress click on edit

    Hover over your admin user, then click on Edit

  4. wordpress fill out password click update profile

    Scroll to the very bottom, fill out your new secure password twice, then click on Update Profile.

  5. wordpress profile updated successfullyYou should now see that your admin profile has been updated:
  6.  

 

You should now understand how to update your WordPress admin password, this should help ensure that your website doesn’t become compromised from the recent increase in brute force attack attempts.

Leave a Reply