Title: Move wp admin? Last modified: July 6, 2017 --- # Move wp admin? * Resolved [laslooo](https://wordpress.org/support/users/laslooo/) * (@laslooo) * [8 years, 10 months ago](https://wordpress.org/support/topic/move-wp-admin/) * For over a week now, I am currently having someone trying to log into my wp admin with the username test from many different locations, everytime a different IP, many times a day. * What can I do about that? I thought Maybe I could move the wp admin site with a plugin, to a different url? Will wordfence and woocommerce still work then? Or do you have other ideas? Viewing 3 replies - 1 through 3 (of 3 total) * [rebk75](https://wordpress.org/support/users/rebk75/) * (@rebk75) * [8 years, 10 months ago](https://wordpress.org/support/topic/move-wp-admin/#post-9293965) * [Changing the Default WordPress Login URL](https://www.smashingmagazine.com/2012/05/customize-wordpress-admin-easily/) * [bluebearmedia](https://wordpress.org/support/users/bluebearmedia/) * (@bluebearmedia) * [8 years, 10 months ago](https://wordpress.org/support/topic/move-wp-admin/#post-9294605) * Use the Wordfence option “Immediately block the IP of users who try to sign in as these usernames” to add any non-existent usernames you find unwanted users trying to access your site with. * Set your block period to a longer period as well (days or a month) instead of just minutes or hours. * [wfalaa](https://wordpress.org/support/users/wfalaa/) * (@wfalaa) * [8 years, 10 months ago](https://wordpress.org/support/topic/move-wp-admin/#post-9305907) * Hi laslooo, I would recommend turning on “[Enable login security](https://docs.wordfence.com/en/Wordfence_options#Enable_login_security)” in Wordfence with these options enabled: “[Lock out after how many login failures](https://docs.wordfence.com/en/Wordfence_options#Lock_out_after_how_many_login_failures)“,“ [Immediately lock out invalid usernames](https://docs.wordfence.com/en/Wordfence_options#Immediately_lock_out_invalid_usernames)“, and “[Immediately block the IP of users who try to sign in as these usernames](https://docs.wordfence.com/en/Wordfence_options#Immediately_block_the_IP_of_users_who_try_to_sign_in_as_these_usernames)” that should protect you against brute force attacks. * Also, if you are using a static IP, then you can limit access to wp-login.php to your IP only, you can do that via “.htaccess”, check [this guide](https://codex.wordpress.org/Brute_Force_Attacks) from the WordPress codex. * P.S. make sure not to block access to wp-admin directory or change its name, because many plugins/themes require admin-ajax.php file which is located in ( wp-admin/admin-ajax.php), more information regarding this issue can be found [here](https://www.wordfence.com/blog/2014/05/please-stop-password-protecting-your-wp-admin-folder-because-it-breaks-public-ajax-for-wordpress/). * Thanks. Viewing 3 replies - 1 through 3 (of 3 total) The topic ‘Move wp admin?’ is closed to new replies. * ![](https://ps.w.org/wordfence/assets/icon.svg?rev=2070865) * [Wordfence Security - Firewall, Malware Scan, and Login Security](https://wordpress.org/plugins/wordfence/) * [Frequently Asked Questions](https://wordpress.org/plugins/wordfence/#faq) * [Support Threads](https://wordpress.org/support/plugin/wordfence/) * [Active Topics](https://wordpress.org/support/plugin/wordfence/active/) * [Unresolved Topics](https://wordpress.org/support/plugin/wordfence/unresolved/) * [Reviews](https://wordpress.org/support/plugin/wordfence/reviews/) * 3 replies * 4 participants * Last reply from: [wfalaa](https://wordpress.org/support/users/wfalaa/) * Last activity: [8 years, 10 months ago](https://wordpress.org/support/topic/move-wp-admin/#post-9305907) * Status: resolved