Enhance Your WP Security: Delete “admin” username
In the past, every WordPress installation created a default user with the name “admin“. Hackers know that many older WordPress installations still have the “admin” username. And that knowledge makes your website vulnerable to attack. You can improve your site’s security by creating a new username that is unique to your site and by deleting “admin“. Go to Users -> All Users and check if a user has the name admin, we don’t mean the user role of administrator.
Your username and your display name don’t have to (and shouldn’t) be the same.
Follow these 7 steps to change your WordPress username:
- Login as admin.
- Create a new profile with a unique username and a strong password – you’ll need to use a different email address to do this.
- Make this new user an administrator.
- Log out.
- Log back in as the new user you just created
- Delete the original “admin”
- You will be prompted to either delete this user’s posts or attribute the posts to the new user. Attribute them to the new user. Then click on the “Confirm Deletion” button (as shown below).
Now you can change the email address for this new user back to your preferred email address.
For added security make sure that the display name isn’t the same as the username. Keep your username secret.
Don’t give out your username
If you want to give someone access to your site, set them up as a new user. This way you can delete them if you want to revoke access and, if you are both working at the same time, WordPress will make sure that you don’t overwrite each other. Pages or posts will be locked to another user when you are editing
Presto! You have just enhanced your WordPress site’s security.