> ## Documentation Index
> Fetch the complete documentation index at: https://kb.hosting.com/llms.txt
> Use this file to discover all available pages before exploring further.

# Limiting login attempts on WordPress using a plugin

> Learn how to Limit Login Attempts on WordPress. This article shows you how to use LoginLockDown Plugin to limit login attempts on WordPress sites.

[WordPress](https://hosting.com/hosting/platforms/wordpress-hosting/managed-wordpress-hosting/) allows for an unlimited number of user login attempts by default, making the site vulnerable to security threats. Hackers can use different passwords to crack passwords with unlimited login attempts. Of course, if you use a firewall, this is taken care of, but if you don't, you can limit logins and secure your WordPress site with the LoginLockDown Plugin. Login LockDown logs every failed login attempt, along with the IP address and timestamp. If a certain number of login attempts from the same IP range are detected in a short period of time, the login function is disabled for all requests from that range. This helps to prevent brute force password discovery. This article will walk you through installing and configuring the LoginLockDownPlugin to prevent brute force password guessing.

## Installing and configuring Login LockDown Plugin

To install and configure Login LockDown Plugin, follow these steps:

1. Log in to your [WordPress](https://hosting.com/hosting/platforms/wordpress-hosting/managed-wordpress-hosting/) site with an administrator account.
2. On the **Dashboard** in the left sidebar, click **Plugins**, and then click **Add New**:\\
   ![](https://static.hosting.com/kb/kb-wordpress-addnewplugin.png)
3. Search for "**Login LockDown**" click Install, and then click **Activate** the plugin:\\
   ![](https://static.hosting.com/kb/kb-wp-loginlockdown-plugin.png)
4. On the **Dashboard** in the left sidebar, click **Settings** and then click on **Login Lock Down**: <img src="https://static.hosting.com/kb/kb-wp-loginlockdown-settings.png" />
5. Click on **Update Settings**, to set the max login tries, retry time period and other settings to limit the login attempts:\\
   ![](https://static.hosting.com/kb/kb-wp-loginlockdownoption.png)

## More information

For more information about the Login Lockdown Plugin, please visit [https://wordpress.org/plugins/login-lockdown/](https://wordpress.org/plugins/login-lockdown/)

## Related articles

* [Adding CAPTCHA protection to a WordPress site](/docs/adding-captcha-protection-to-a-wordpress-site)
* [Changing a WordPress account username](/docs/changing-a-wordpress-account-username)
