Secure Your WordPress Site With a Single Sign On

Learn how to make your WordPress websites more secure with the single sign-on module for Jetpack. This will redirect your existing login page to's login page.

Brute force attacks are the most common occurring hacking attacks on a WordPress site. In these attacks, hackers try to log into your WordPress dashboard by using many combinations of username and passwords.

Everyone knows that the common WordPress admin URL is “wp-admin”. It can be said as a public login page, often found at So, it is easy for hackers to get started with brute force attacks to gain access to your site by guessing your password through repeated trial and error method.

There are many ways to tighten the security of WordPress site. One major step you can take password-protect the WordPress admin folder and use 2-factor authentication plugin.

For this, you are recommended to activate Jetpack SSO. Single Sign On is used as a complementary sign-in option to your existing registration system.

It uses authentication part of That means you will need to sign in into your site by a sign into your account to access the dashboard of your site. In this tutorial, I am gonna use Jetpack plugin to enable single sign on.

Features that Single Sign On provides:

  • Support 2-factor authentication without requiring any additional plugin.
  • Redirects all login attempts to and thus drastically reduces the load on your server and database.
  • You can use it for your multiple sites.


Set up for WordPress Single Sign On:

  1. If you already have an account with then log into your account. If you do not have an account, then sign up from here.
  2. Now enable two-step verification for your account by using this link.
  3. Enroll your contact number so that WordPress will send a verification code via SMS each time while logging in into your account.
  4. Now, install and activate Jetpack plugin for your WordPress site. Next, click on the Connect to to set up a connection between your blog and your WordPress account.
  5. After this, go to Jetpack settings and enable SSO (“Single Sign On”) feature in Security tab.
  6. Now, login to your FTP account.
  7. Click on the current theme folder and edit the functions.php file by copy-paste the following line of code after the first line.
    add_filter( 'jetpack_sso_bypass_login_forward_wpcom', '__return_true' );

    This will redirect your existing login page to the’s login page.

  8. Now go to Users from your site’s dashboard and click on ‘Log in with

By doing this, you will link your account to the username that you’ve used to log into the site. This will completely disable the login form of your WordPress site. Read our complete guide to harden WordPress security.

Amit Malewar
Amit Malewar has been the tutorial writer since 2013. His passion for helping people in all aspects of technology flow through in the expert coverage he provides. In addition to writing for InfoPhilic, Amit loves to read and try new things.


Subscribe to our newsletter

To be updated with all the latest news, offers and special announcements.



Please enter your comment!
Please enter your name here