change WordPress password

How to Change Your WordPress Password

change WordPress password

Your WordPress password gives you access to manage your site. With a username and password combo, you will be able to access your WP dashboard and make administrative changes and updates. This guide will show you how to change WordPress password.

Passwords are a requirement for virtually everything you do online. Thus, users are expected to memorize or store passwords which include letters, digits, or symbols.

Since passwords are the primary tool for WordPress security, you cannot afford to have easy to guess passwords. These can make your site vulnerable to attacks. And the site administrator could be impersonated.

However, since your password has to be difficult to guess, it is often easy to forget your password and get locked out of your account.

If you find yourself in any of these situations:

  1. Forgotten password to your WordPress site.
  2. Need to change it from a weak password to a stronger one to ensure the security and privacy of your site.
  3. A hacker locks you out of your site.

Then this article is for you. We’re going to explore different ways to reset your WordPress password. You’ll learn how to change passwords for your site depending on the situation you find yourself.

 

In this article:

    1. When logged in through the WordPress admin dashboard
    2. Change WordPress password through email when locked out of your site
    3. Reset password via phpMyAdmin on WordPress site’s cPanel
    4. Password Reset using the Emergency Password Reset Script

Importance of strong WordPress passwords

Having different passwords for every online account can be hard to keep up with. Because of this, a lot of people tend to set passwords that are easy to remember. Simple passwords like a combination of numbers that make up birth dates, or something as simple as 1234 are often used.

However, strong passwords are very important for your WordPress admin panel.

If a malicious user is able to guess your password, they can access your admin panel and modify your site as they please. They may add malware, malicious links to blacklisted sites, and other hacks that would ruin your site.

They can also steal user information which will put your business in a really bad spot.

Lost credibility, blacklist by search engines, fraud, and legal issues are just some of the reasons to ensure your site is secure.

Additionally, passwords alone are usually not sufficient. To ensure better WordPress security, you should implement two factor authorization. Please read our WordPress two factor guide.

Ways to change WordPress passwords

There are various reasons why you may need to reset your password. You may simply want to set a more secure password for your site. Or you lost your password and are locked out of your account.

The solutions below address these situations, starting with the simply changing password (first solution below), to lost/forgotten passwords (3 other solutions below).

When logged in through the WordPress admin dashboard

This method is useful for changing the WordPress password of your site while you still have access to it. This can be done with ease from the WordPress dashboard.

First, log in to your WordPress admin dashboard and go to Users>All Users.

WP admin

On the All Users page, hover on the Administrator’s profile and click Edit.

Edit WordPress admin User profile

On the Profile page, scroll to Account Management section. Next, click Generate Password.

Generate password for user profile

WordPress will generate a series of characters, including numbers and symbols as a password.

Change WordPress password to auto generated

The password that WordPress generates is complex and is difficult to guess. Which is why you should use it! You can always use password management tools to save your passwords and login in.

Alternatively, you can create your own password.

Simply type in your password into the new password area. Ensure the password is strong.

WordPress recognizes a password as Strong depending on the number and mix of characters in it. The box under the password textbox will turn green with Strong written on it. Furthermore, you can click to log out of all other devices and stay logged in on the present device to force usage of your new password.

Users account management password setting

When you’re satisfied with your new password, click Update Profile to save the new changes.

Update profile to change WordPress password

And that is how to change the WordPress password from your dashboard.

Change WordPress password through email when locked out of your site

This method is useful if you lost the password to your WordPress site, and are unable to gain access through the login screen.

If you try to access your WordPress site and you get the error message that the password you enter is incorrect, you can use the lost your password link on the login screen to reset your WordPress password. Click on any of the links as shown below.

Use password reset to change WordPress password

Enter your username or the email associated with your WordPress website into the space provided. Click Get New Password.

reset password insert username or email

You’ll receive a prompt to check your email for the confirmation link.

check the email for password reset link

Go to your inbox and click the reset link.

password reset link in email

The link redirects to a WordPress login page. WordPress will generate a password for you as seen below.

Change WordPress password via email

You may use the password it generates, or enter a new strong password.

When done, click Reset Password.

new strong wordpress password

And that’s it, you have reset your WordPress password.

Reset password via phpMyAdmin on WordPress site’s cPanel

This method is useful if did not get the email when you tried the reset option above, and if you have access to cPanel through the WordPress hosting for your site.

To reset your WordPress password via phpMyAdmin, first login to your cPanel. Your host provider will give you the necessary details like the url, username, and password for accessing cPanel.

We will be making changes to the site’s database. Therefore, it is important to backup your database.

After logging in to cPanel, under Files section, click Backup.

cPanel website backup

Scroll to Partial Backups.

Next, under the Download a MySQL Database Backup section, click the link under databases.

MYSQL Database download

The database will begin to download as a compressed sql.gz file. It will be saved in downloads folder in your computer system.

Now that the database is backup is complete, we will proceed to reset the WordPress password for the site.

Still in cPanel, under the Databases section, click phpMyAdmin.Access database to change WordPress password

On the new screen, click the database link at the upper left-hand corner. Ensure this is the database containing your WordPress site.

wordpress site database phpmyadmin

Locate the users table on the screen and click on it.

Note that this table usually has a prefix, such as wp_users, or in our case, prt_users.

database prt_users

A list of the site’s admin users will display along with usernames and emails as well. Locate the particular user you wish to change password for. Click Edit.

Change WordPress password for an admin user

Locate user_pass on the page.

user_pass password reset

In the user_pass field, click the dropdown menu beside the varchar(255) under the Function column, and select MD5.

In the same field, under the Null Value column, delete the old password and enter a new one. Then, click Go.

Change WordPress Password in Phpmyadmin

You will see a success message. Your password has been updated.

Password Reset using the Emergency Password Reset Script

This is another method you can use if email reset does not work and if you would not like to directly alter your database. The Emergency Password Reset Script is a PHP script which gives you a dialog to reset your password.

First, copy the Emergency Password Script. Then paste it in a note file and save as emergency.php.

The next thing you need to do is upload the emergency.php file to the root of your WordPress installation by logging to your site’s cPanel, and going to File Manager>Public_html.

emergency.php upload

After uploading, follow these steps:

  1. In your browser, enter http://yoursite.com/emergency.php (replace yoursite.com with your domain)
  2. Enter the WordPress admin username
  3. Next, type in the new password
  4. Then click Update options.

emergency.php password reset

Your password will be reset to the new pw you entered.

Ensure you delete the emergency.php file from the server when your password reset is complete. Otherwise, anyone can reset your password.

To delete the file, still on your site’s cPanel, navigate to Public_html. Next, select emergency.php file and click Delete.

Click Confirm to complete the deletion.

delete emergency.php

Conclusion

In this article, we have reviewed four different ways to change your WordPress password.

Changing your password through email is simple and easy. If you lose access to your email or do not receive the reset email, you may have to resort to the use of PhpMyAdmin in cPanel.

The emergency reset script is easy to use but is a last resort.

Whichever method you use, ensure you set a secure password. Further, you can enhance your site security with other steps. Please read our WordPress security guide for more information.