Guide for Password Directory Protection in cPanel. Password protecting directories in cPanel is an efficient way to secure sensitive or work-in-progress content.
With just a few steps, you can limit access and protect your website from unauthorized access, without requiring advanced programming or security knowledge.
Why is password protection important?
Password protecting a directory on your website is a simple but efficient method to restrict access to certain files or sections.
This feature is useful for blocking public access to administrative directories, work files, pages in development, or private sections.
Requirements for enabling password protection
- Access to cPanel account
- An existing directory you want to protect
- Sufficient permissions for file management
Directory Protection Guide
Step 1: Authentication in cPanel
Access the cPanel interface through the link provided by the hosting company, usually at the address https://your-domain.com:2083.
Enter the authentication credentials to access the panel.
Step 2: Accessing the “Directory Privacy” function
Within cPanel, locate the Files section and click on the Directory Privacy option.
This allows setting password protection for any directory in your account structure.
From the displayed list, navigate to the directory you want to protect.
You can access main directories or subdirectories.
Once you’ve identified the directory, click on its name.
Step 4: Enabling password protection
Check the “Password protect this directory” option.
Then, fill in a descriptive title for the protected area.
This title will be displayed in the browser’s authentication window.
Step 5: Creating the user and password
After activation, you will be asked to create a user who has access to that directory.
Enter a username and a secure password, then save.
This account will be used to access the protected directory.
Step 6: Verifying the protection
Access the protected directory from your browser (e.g., https://your-domain.com/secured/).
You should be prompted for authentication. Enter the created user credentials and verify functionality.
Security recommendations
- Use complex passwords with uppercase, lowercase letters, numbers, and symbols
- Only share access credentials with authorized individuals
- Periodically change the password of the created user
- Avoid protecting critical CMS directories (e.g.,
/wp-admin) without consulting a specialist
Disabling password protection
To remove protection, return to “Directory Privacy”, access the respective directory, and uncheck the “Password protect this directory” option.
Then delete the associated access accounts.
Comments (0)