To log in to your WordPress admin dashboard, go to yourdomain.com/wp-admin/ in your browser. This redirects to the WordPress admin login page where you enter your username and password. You can also go directly to yourdomain.com/wp-login.php to reach the same page.
That covers the basics, but finding the login URL is just the starting point. What if your login page has been moved by a security plugin? What if you’ve forgotten your password, or you’re stuck in a redirect loop that keeps sending you back to the login screen?
The WordPress login page, generated by a file called wp-login.php, is the gateway to your site’s admin dashboard. The wp-admin directory is the backend area where you manage content, install plugins, change themes, and configure settings. The login page is also the number one target for brute force attacks, which is why knowing how to access it and protect it matters.
This guide covers every login method, common troubleshooting fixes, and the security steps that keep your admin area locked down.
Table of contents
How to Find Your WordPress Admin Login URL
The first step to logging into your WordPress admin dashboard is knowing where to find the login URL. This URL takes you to the WordPress login page where you enter your credentials.
The default WordPress login URLs are typically one of the following:
- yourdomain.com/wp-admin/ is the most widely used login URL. When you’re not logged in, it automatically redirects to the login page.
- yourdomain.com/wp-login.php is the direct login URL. This takes you straight to the login page without any redirection, which is useful when /wp-admin isn’t loading properly.
- yourdomain.com/admin/ is a shortcut that redirects to /wp-admin/.
- yourdomain.com/login/ is another shortcut that also redirects to the login page.
All four URLs lead to the same place. The difference is that /wp-login.php is the actual file, while the others are convenient shortcuts that redirect to it.
Login URL for Subdirectory Installations
If WordPress is installed in a subdirectory (for example, if you have a blog section within your main site), the login URL reflects that structure:
yourdomain.com/blog/wp-admin/
Login URL for Subdomain Installations
For sites where WordPress is installed on a subdomain, the login URL follows the subdomain:
blog.yourdomain.com/wp-admin/
What If Your Login URL Has Been Changed?
Some WordPress users change their default login URL for security reasons (more on that later). If someone set up your site or if a security plugin is active, the standard URLs above might return a 404 error.
In that case, try these approaches:
- Check your email. When WordPress was first installed, you should have received an email with login details. Search your inbox for messages from your hosting provider.
- Ask your hosting provider. Their support team can help you identify the correct login URL or reset it.
- Check your security plugin settings. If you have FTP or file manager access, look in the /wp-content/plugins/ folder for plugins like WPS Hide Login that may have altered the URL.
Upgrade Your Website with a Premium WordPress Theme
Find a theme that you love and get a 10% discount at checkout with the FLASH10 code
Choose your theme
How to Log In to Your WordPress Admin Dashboard
Once you’ve found your login URL, accessing your admin dashboard is straightforward. Here’s the standard process that works on every WordPress installation.
- Open your browser and go to yourdomain.com/wp-admin/.
- You’ll see the WordPress login screen: the WordPress logo at the top, followed by two fields for your username (or email address) and password, a “Remember Me” checkbox, and a blue “Log In” button. Below the form, there’s a “Lost your password?” link.
- Enter your credentials.
- Check the Remember Me box if you want to stay logged in for 14 days (or until you clear your browser cookies).
- Click Log In.
After successful authentication, WordPress redirects you to the admin dashboard, the central hub where you manage your entire website.
The dashboard has three main areas.
- The Admin Toolbar runs across the top, providing shortcuts to frequently used features like creating new posts and viewing your site’s front end.
- The Sidebar Menu on the left is where you navigate to all major sections: Posts, Pages, Media, Appearance, Plugins, Users, and Settings.
- The Main Content Area in the center displays information relevant to whatever section you’re in. On the home screen, that includes widgets like At a Glance, Activity, Quick Draft, and Site Health Status.
Your access level after logging in depends on your user role. WordPress has five built-in roles: Administrator (full access), Editor (can manage all posts), Author (can publish their own posts), Contributor (can write but needs approval), and Subscriber (can only manage their profile).
Alternative Ways to Access WordPress Admin
Beyond the standard login page, there are several other ways to reach your WordPress admin dashboard. These can be especially useful if you’re having trouble with the default login URL.
Log in from Your Hosting Control Panel
Many hosting providers offer a one-click login to your WordPress admin through their control panel. This bypasses the login page entirely and logs you in automatically.
Through cPanel or Plesk:
- Log in to your hosting account using the credentials your hosting provider gave you.
- Navigate to the WordPress section or look for the Softaculous Apps Installer.
- Find your WordPress installation and click the admin login link.
Hosting providers like SiteGround, Bluehost, and others have dedicated WordPress management areas with auto-login buttons, making this one of the quickest ways to access your dashboard.
Log in via WordPress.com
If your site is hosted on WordPress.com rather than being a self-hosted WordPress.org installation, the login experience is different. You log in at wordpress.com/log-in using your WordPress.com account credentials.
WordPress.com offers additional login options that aren’t available on self-hosted installations by default:
- Social login through Google, Apple, or GitHub
- Magic link (passwordless login) lets WordPress.com email you a login link so you don’t need a password at all
- Two-step authentication built in via Jetpack
On self-hosted WordPress.org sites, you can add similar features through plugins. Enterprise and multisite installations can also integrate SSO (Single Sign-On) or SAML authentication to let users log in with corporate credentials.
If you’re on a WordPress.com Business or Commerce plan, you can also access the classic WP Admin dashboard through the Quick Links section of your site’s dashboard.
Use a Saved Bookmark
This is how most experienced WordPress users access their sites daily. Bookmark your login URL (yourdomain.com/wp-admin/) in your browser’s toolbar. Combined with saved credentials in your browser’s password manager, this gives you near-instant access.
Add a Login Link to Your Website
You can add a login link directly to your site’s navigation so it’s always within reach:
- In your WordPress dashboard, go to Appearance → Menus.
- Under Custom Links, enter your login URL (e.g., yourdomain.com/wp-admin/) and give it a label like “Admin Login.”
- Click Add to Menu and save your changes.
This is a common approach for sites with multiple contributors who need frequent access. You can also add the Meta widget to your sidebar or footer (under Appearance → Widgets), which includes a login link along with RSS feed links.
Troubleshooting WordPress Admin Login Issues
Sometimes things don’t go as planned. Here are the most common login problems and how to solve them.
You Forgot Your Password
- On the login page, click the “Lost your password?” link.
- Enter the username or email address associated with your account.
- Click Get New Password.
- Check your email for a password reset link. (If it’s not in your inbox, look in your spam folder.)
- Click the link and set a new password.
WordPress includes a password strength meter when you create a new password. Choose something it rates as “strong.”
If the email-based reset isn’t working (for example, if your site isn’t sending emails correctly), your hosting provider can help you reset your password through phpMyAdmin or their WordPress management tools.
You’re Stuck in a Login Redirect Loop
This is when WordPress keeps sending you back to the login page after entering correct credentials. The usual causes are browser cookies, plugin conflicts, or URL mismatches.
Fix it:
- Clear your browser cookies and cache, then try again.
- Check that the WordPress Address (URL) and Site Address (URL) match in your database. You can verify these values in the wp_options table via phpMyAdmin (look for the siteurl and home rows).
- If a recently installed plugin is causing the issue, rename the plugin’s folder via FTP (in /wp-content/plugins/) to deactivate it.
Your Login Page Returns a 404 Error
This usually means the login URL has been changed by a security plugin like WPS Hide Login.
Fix it:
- Connect to your server via FTP or your host’s file manager.
- Navigate to /wp-content/plugins/ and find the folder for the plugin that changed the URL.
- Rename the folder (e.g., append “-disabled”) to deactivate the plugin.
- Try logging in at the default URL: yourdomain.com/wp-login.php.
You See a White Screen or Error Message
This often points to a PHP memory limit issue or a plugin/theme conflict.
Fix it:
- Try accessing yourdomain.com/wp-login.php directly instead of /wp-admin/.
- Increase your PHP memory limit by adding this line to your wp-config.php file: define(‘WP_MEMORY_LIMIT’, ‘256M’);
- If you recently updated a plugin or theme, deactivate it via FTP by renaming its folder.
Your Account Is Locked After Too Many Failed Attempts
Security plugins often limit login attempts to prevent brute force attacks. If you’ve exceeded the limit, you’ll be temporarily blocked.
Fix it:
- Wait for the lockout period to expire (usually 15–30 minutes).
- If you can’t wait, deactivate the security plugin via FTP.
- Check your email. Some security plugins send an email with reactivation instructions.
For a deeper dive into solving access problems, see our article on Can’t Access wp-admin? Try These Expert-Approved Fixes.
Keep Your WordPress Login Secure
Your login page at /wp-login.php is the most common target for brute force attacks, where bots try thousands of password combinations to break in. At a minimum, use a strong password and enable two-factor authentication (2FA).
For a complete walkthrough of security measures including limiting login attempts, changing your default login URL with WPS Hide Login, adding CAPTCHA, restricting access by IP with .htaccess, and password-protecting the wp-admin directory, see our guide on WordPress Login Security: Proven Tips and Tricks.
Bottom Line
Logging into your WordPress admin dashboard is one of those things that’s simple once you know where to look. The default login URL is yourdomain.com/wp-admin/, and the direct login page is at yourdomain.com/wp-login.php. Bookmark it, save your credentials in a password manager, and you’ll have one-click access to your site’s control center.
With easy access to your dashboard, now is the perfect time to upgrade your website’s design. Explore WPZOOM’s collection of premium WordPress themes to create a stunning and functional site, or learn how to customize your WordPress login page for a more branded experience.
Frequently Asked Questions
The default login URL is yourdomain.com/wp-admin/, which redirects to the login page. You can also go directly to yourdomain.com/wp-login.php.
Yes. Plugins like WPS Hide Login let you set a custom URL, which helps prevent automated bots from finding your login page. If you forget the custom URL, deactivate the plugin via FTP to restore the default.
Click the “Lost your password?” link on the login page, enter your email or username, and follow the reset instructions sent to your email. If that doesn’t work, your hosting provider can help you reset it through phpMyAdmin.
Login redirect loops are usually caused by browser cookies, plugin conflicts, or URL mismatches between your WordPress Address and Site Address settings. Start by clearing your browser cookies, then check your wp_options table in the database.
Start with a strong password and two-factor authentication. For a full list of measures including login attempt limits, CAPTCHA, custom login URLs, and IP restrictions, see our WordPress login security guide.
Yes. WordPress supports multiple user accounts with different roles (Administrator, Editor, Author, Contributor, Subscriber). Each user logs in with their own credentials, and their access level is determined by the role you assign them.
