Placing the htaccess file in the wp-admin directory did not work for me so I went a different route and it seems to be working very well. Below is what I have in my main htaccess file:
<files wp-login.php>
# set up rule order
order deny,allow
# default deny
deny from all
allow from x.x.x.x
allow from y.y.y.y
allow from z.z.z.z
</files>
ErrorDocument 401 default
ErrorDocument 403 default
ErrorDocument 404 default
Related Posts:
- Change Login URL Without Plugin
- Securing wp-admin folder – Purpose? Importance?
- Options for restricting access to wp-admin
- How to change “wp-admin” to something else without search-replacing the core?
- Should I add the IP of the server that hosts my sites to the list of authorized IPs in the wp-admin/.htaccess?
- How to Change The WordPress Login URL Without Plugin
- 404 redirect wp-login and wp-admin after changing login url [closed]
- Couple questions about .htaccess, login page, updates
- Can I rename the wp-admin folder?
- “Too many redirects” ONLY when trying to access wp-admin page
- Use a different domain for SSL
- What is the best method to close off the backend?
- .htaccess in wp-admin produces a redirect loop
- Share same domain for wp-admin but for different website
- Wrong canonical link on wp-admin pages
- Can I rename the wp-admin folder?
- WordPress in sub directory wp-admin problem
- .htaccess rewrite rule for removing .php extension with exception of wp login and wp-admin
- Can’t access admin dashboard with wp-admin without /index.php after it
- Why should I password protect WP-Admin?
- Call to undefined function insert_with_markers
- Cannot log into WordPress Dashboard after removing/adding .htaccess
- Change WP-Login or WP-Admin
- Which HTTP headers to use for subdomain embedding?
- CDN + WP Admin Query – .htaccess redirection
- From 403 error to 500 internal server error
- FORCE_SSL_ADMIN not working
- Cannot Access Admin Area After Migration
- Wrong wp-admin URL
- Limit access to wp_admin
- I want to disable login of admin (/wp-admin) with email and make it accessible only with username
- password reset link being sent as HTTP?
- How do I host WordPress on a hidden domain through a reverse proxy?
- Logout USER form backoffice after 30 minutes of inactivity [closed]
- Do I have to face security problems if I changing default role to Contributor
- Hide username discovery
- Efficient way to check local WordPress php files and Database for malicious code? [duplicate]
- Renaming wp-admin without hard-coding it. Is it really possible?
- Need help for WordPress User Session Management?
- How login is possible, if I deny login page via .htaccess with allow ip
- Developer/Designer asking for admin access
- Redirect an entire WordPress site on a subdomain, except wp-admin
- Blank page when viewing wp-admin
- Is WordPress secure enough for a multi-user article directory?
- wp-admin going directly to 404
- WordPress /wp-admin redirect to wrong port in docker
- wp-admin and wp-login.php not Accessible after Cloudflare
- Can I rename the wp-admin folder?
- CSRF attack to create USER
- Disabling WP-Admin Caching in htaccess
- Can I rename the wp-admin folder?
- Limit access to wp-admin but still be able to log in from different locations?
- SSL doesn’t deliver parts of WordPress Administration Module
- Why WordPress not logout after I have close my browser?
- Making WP Admin Folder accessable JUST under a different link
- How to protect wp-admin from third party access?
- is exposed wp-admin site a serious security vulnerability
- Can a user submit requests to wp-admin/admin.php without logging in?
- Wildcard multisite wp-admin url wrongfully redirected
- I found this in a plugin. What does it do? is it dangerous?
- How to create sub menu with a URL parameter?
- Can initial focus be set to search field in WordPress Media Library?
- When attempting to update a self-hosted WordPress site, I’m seeing “ASN1 unknown message digest algorithm”
- How to create a wp admin page (for use in an ajax request)
- Removing user fields [duplicate]
- Creating WordPress Admin Themes
- Add “Page Revised” column to Admin
- admin_url in plugins
- Share Tags Between Custom Posts in Admin
- Filter dropdown in users.php “delete user” bulk edit screen
- Cannot find an OLD Gravity Form on an OLD Word Press site [closed]
- Where did the screen options menu go?
- WordPress notification reports
- Page update through theme editor caused wp admin to break
- post-new.php?post_type=product is not loading properly
- How to use underscore.js in WordPress Admin
- meta box on new admin page
- Site Crashes When Updating to WordPress (Version 3.6)
- Change of IP Address
- How can I control which plugins run in the dashboard?
- WP Admin Login keeps redirecting to login
- WordPress admin section appears broken
- Wp-admin widgets have no title texts
- How to create directory under my active theme directory
- CPU overload spam – redirect link to wp-admin and new post
- define two login page url
- On Users (user.php) in wp-admin disable/hide “Bulk Actions” and “Change Role To”
- Redirect from wp-admin back to page
- How can I can I make changes to a WP project I pulled from GItHub?
- WordPress critical error on wp-admin page with 100% permissions
- All files in public_html, Cannot launch WordPress site via wp-admin
- Add item to admin panel – w/o plugin & theme
- Show only childs and grandchilds of certain post in admin
- Creating another wordpress site as sub-domain of a wordpress site
- Is it possible to change the images source that are shown in the admin side?
- Using query string on edit CPT page
- $current_screen if condition for a specific page in admin
- All of my WordPress sites have Bold Open Sans
- After Upgrade: $user becomes unknown (id: 0) after successful login?
- Why is this line of code Wrong in every WordPress .Htaccess security article?