Change the default WordPress admin login username: As I have previously mentioned, new WordPress installations, by default, use admin for the administrator username. This admin account provides access to the WordPress backend and grants access to all aspects of the WordPress installation. Since the default administrator login (admin) is well known, this can become a security vulnerability. A hacker could perform a brute force attack on the account and retrieve your WordPress admin login password, potentially compromising your site.
Change the Default WordPress Admin Username
By default, WordPress creates an administrator account with the username admin. This is widely known and can be a security risk, as hackers can target it with brute-force attacks. Changing your WordPress admin username to something unique improves security and makes your site harder to compromise.
Step 1: Create a New Admin User
- Log in to your WordPress admin panel.
- Navigate to Users > Add New.
- Fill in the required fields:
- Username: Choose a unique admin name.
- Email: Use a valid email address.
- Role: Select Administrator.
Click Add New User to create the account.
Step 2: Log in With the New Admin Account
- Log out of WordPress.
- Log back in using your new administrator username and password.
Step 3: Delete the Default Admin Account
- Go to Users in your WordPress dashboard.
- Check the box next to the old admin username and click Delete.
Step 4: Attribute Existing Posts to the New Admin
When prompted, select Attribute all posts and links to: and choose your new admin username. Then click Confirm Deletion to complete the process.
Final Notes
- Your WordPress site now uses a unique admin login, improving security.
- Always use strong, unique passwords for administrator accounts.
- Consider enabling two-factor authentication for additional protection.
By following these steps, the default admin username is removed, reducing the risk of unauthorized access to your WordPress site.