How to Password Protect the Joomla Administrator Directory With cPanel

Joomla based websites are vulnerable to hacker attacks and there is a simple way that you, as the site administrator, can protect your sites from these attacks. Adding a layer of security to the administrator directory for the site by adding a username and password is something that you can do in a few moments to protect your work. This option applies only to Joomla installations a Unix or Linux server that is running Apache.

Joomla’s security uses one-way password encryption, which means that your actual password is not stored within Joomla and cannot be retrieved by a hacker. It means that the password you enter is encrypted and the encryption is store on the server for comparison with future login attempts. Regardless of how the password information is stored within Joomla, keep in mind that you should frequently change your passwords in order to have optimal protection from unwanted hacker attacks and other security risks.

Once you require this information to access the admin area of Joomla, you will be prompted to authenticate twice. First, from the server and second, from Joomla. Here are the steps to make this change to your website:

1. Log into the cPanel for your website by pointing your browser to http://yoursitename/cpanel. This will bring you into Joomla and provide you with access to many administrator functions for your website.

2. Select the Security panel within cPanel and then go to the option to Password Protect directories. You will first select Document Root and then Administrator.

3. Click on Password Protect this Directory and you will be prompted to name the area that you have selected. This name will appear when you attempt to login to the administrator area in the future. Consider naming it something useful like Administrator Area or My Control Panel.

4. Enter the username and password that you would like to use for this directory. You should select a combination that is distinctly different from the server access username and password and something that cannot be easily guessed by potential hackers. A combination of alphanumeric characters is a good idea, so is adding a few capital letters and symbols. You will want to change this password in the future, so perhaps you can select something that you can use with modifications in the future. After entering the combination you have selected, click on Add – Modify.

5. Restart your browser by closing and reopening the program in order to test the change you have made. Once you attempt to log into the administrator area for your website, you should be prompted for this new username and password combination. Once your information is accepted, you will log in with your original username and password to gain access to your information.