How to disable Restricted Area window?

  • Posted February 20, 2014

I installed WordPress following the article “One-click WordPress installation on Ubuntu 13.10”. After that, I login in to Restricted Area window with username and password, which are located in /root/WORDPRESS (wp-admin/ folder is protected by Apache’s .htaccess.)

But now, when I visit my site this message is showing every time. On every page.

How to disable it?



Can anyone please translate this to something an average user could understand? I’m sorry but I do not have a background in CS and I just can’t understand what you guys are talking about. :(

I installed a new plugin on wordpress (hosted in DigitalOcean using one-click) and I don’t really have a problem with the additional server password. But after I installed this plugin called floating social bar, the password prompt appears on every page. I’ve been told I could just add the admin ajax php on whitelist? But I really don’t understand. I tried installing putty but I feel like a monkey on a rocketship.

Can someone please help. Thank you!

Thanks alot It is working fine for my website

Submit an answer
You can type!ref in this text area to quickly search our full set of tutorials, documentation & marketplace offerings and insert the link!

These answers are provided by our Community. If you find them useful, show some love by clicking the heart. If you run into issues leave a comment, or add your own answer to help others.

From the main tutorial, One-Click Install WordPress on Ubuntu 14.04 with DigitalOcean:

To remove the additional password prompt, you’ll need to log into your VPS instance through SSH… Once logged in, you need to update the main Apache configuration file. Open it as root with your text editor:

nano /etc/apache2/apache2.conf

Inside, you need to find the section that deals with the “/wp-admin/” section. It should look like this

<DirectoryMatch ^.*/wp-admin/>
    AuthType Basic
    AuthName "Please login to your droplet via SSH for login details."
    AuthUserFile /etc/apache2/.htpasswd
    Require valid-user

This entire section can be commented out by placing the “#” character before each line, like this:

#<DirectoryMatch ^.*/wp-admin/>
#    AuthType Basic
#    AuthName "Please login to your droplet via SSH for login details."
#    AuthUserFile /etc/apache2/.htpasswd
#    Require valid-user

Once this is complete, you can restart Apache for your new changes to take affect.

service apache2 restart

This should remove the additional password prompt from the administrative areas, which is usually okay since WordPress itself can handle authentication.

I don’t know if you guys changed it before but I also had to change permission from wp-admin folder and wp-login.php file.

Very thanks @kamaln7 , its works now.

Trying to restart apache failed with the following error:

Could not reliably determine the server's fully qualified domain name, using Set the 'ServerName' directive globally to suppress this message

I needed to add a line into that same file - /etc/apache2/apache2.conf saying

ServerName localhost   

After adding this line, apache restarted successfully.

my first time here and i run into this nonsense as well. Bitnami does the same crap, thinking they are writing good tutorials/guides but its more confusing than Aamazon’s AWS documentation and does not help new comers get into the “cloud”, I guess thats why they say “built for developers” and thats why RackSpace is growing so well.

This is discovered and has to troubleshoot for a few hours before deleting or at least a day before getting the answer from somewhere else on the net. So multiply that by countless users and they are getting income at the expense of their customers loss and frustration.

PLEASE improve your documentation !!!

If you wish to change the password required for the /wp-admin/ directory, type the following while being logged in as root: <pre> htpasswd /etc/apache2/.htpasswd admin </pre> It will ask you to enter a new password, which will be the password for /wp-admin/

I’ve changed apache2.conf as above, however all of the pages except wp-admin load as a blank page, until I login. after logging in, they load normally. anyone seen this?

  1. sudo nano /etc/apache2/apache2.conf <br>2. Hit ctrl-w and search for ‘wp-admin’ <br>3. Remove these lines <br><DirectoryMatch ^.*/wp-admin/> <br> AuthType Basic <br> AuthName “Please login to your droplet via SSH for login details.” <br> AuthUserFile /etc/apache2/.htpasswd <br> Require valid-user <br></DirectoryMatch> <br>4. Hit ctrl-o to write the changes to the file <br>5. Hit ctrl-x to exit, and then hit ‘y’ to save the changes. <br>6. service apache2 restart to restart your server and the folder should now be accessible.

I think that we have to remove this code from the file: <br> <br><DirectoryMatch ^.*/wp-admin/> <br> AuthType Basic <br> AuthName “Please login to your droplet via SSH for login details.” <br> AuthUserFile /etc/apache2/.htpasswd <br> Require valid-user <br></DirectoryMatch> <br> <br> <br>I did it via WINSCP (sftp) and I had to reboot the droplet (sudo reboot). <br> <br>I was so happy it worked, because I know nothing about Linux and stuff.