Password Protect Entire WordPress Site

If you’re building up content for your new website and feel like it’s not ready to publish yet, you might want to password protect the whole site. It means that visitors are required to enter a password whenever visiting any pages on your website. Once they input the right one, they can access every page without restriction.

In this article, we will walk you through some simple steps on how to achieve that with the Password Protect WordPress (PPWP) plugin.

For PPWP Pro version 1.1.1 and greater

Password protect the entire site

Step 1: Go to PPWP Settings Page and switch to “Entire Site” tab.

Step 2: Turn “Password Protect Entire Site” ON, you will see a textarea for setting multiple passwords at the same time.

After saving the passwords, go to any page on your website and you will see a password form like below:

Please note that each password is limited to 100 characters and contains no space. And blank lines will be removed automatically.

Create new passwords

Unlike previous versions, the sitewide protected password is no longer hashed. It means that all created password will be visible to you, or those authorized to access the settings page, such as Administrators.

To change or delete the passwords, go back to the plugin’s settings page and simply update them under the textarea. Don’t forget to save all your changes.

As a result, those who have access to your website via the previous password have to re-enter the password again.

In case you don’t change the password, visitors will be able to access your site until cookies expire. The default expiration time is 7 days and can be modified under Cookies Expiration Time option.

Bypass password sitewide protection

You can bypass password sitewide protection by either generating access links, excluding specific pages or whitelisting specific roles.

Redirect users after login

Since Pro version 1.1.4, you can define where users are redirected after unlocking your sitewide protection.

Users will be redirected to specific URLs, e.g. pricing page or features page, according to the entered password.

Display sitewide password form in sidebar

PPWP Pro version 1.2.0 comes with a simple shortcode allowing you to display sitewide password form in any location on your site.


You can use it to show password form in sidebar widgets, Gutenberg blocks or page builder plugins’ elements.

Customize password form

Our plugin allows you to customize the default password form quickly and easily using WordPress Customizer. You can add a headline, edit the description, change the default logo and more with live updates.

For PPWP Lite & PPWP Pro version and lower

Step 1: Navigate to PPWP Settings Page and switch to “Entire Site” tab

Step 2: Enable the “Password Protect Entire Site” option and set a password, then click “Save Changes”.

Hashed password

Because the password will be hashed after you click on “Save changes” button, you should save it somewhere manually to avoid forgetting it. There will be no way to help you recover your old password in this case except creating another one.

Migrate sitewide protected password

If you upgrate from Free to Pro version, our plugin will migrate the hashed password automatically. Sitewide protection is kept and people who have entered password will be able to access your site until the cookie expires.

Lasted updated on April 3, 2020