How To Protect a WordPress Site Using Basic Auth in Apache 2.4

Author: erics, Posted August 25th, 2016 at 7:37:07am

Apache 2.4 changed the security configuration directives a bit.

Here is an example using basic auth:

<Directory "/path/to/your/wordpress">
   AllowOverride All 
   Options +FollowSymLinks +ExecCGI -Indexes
   Order allow,deny
   Allow from all

   <RequireAll>
      AuthType Basic
      AuthName "Protected Resource"
      AuthUserFile /path/to/your/.htpasswd
      Require valid-user
   </RequireAll>

</Directory>

AllowOverride All

Options +FollowSymLinks +ExecCGI -Indexes

Order allow,deny

Allow from all

AuthType Basic

AuthName "Protected Resource"

AuthUserFile /path/to/your/.htpasswd

Require valid-user

</RequireAll>

</Directory>

What tripped me up for a while was that I still had the Require all granted directive inside the container, and that needed to be removed for the auth to work.

Categories: How-To's, Technology Tags: 2.4, apache, Apache 2.4, Auth, Authentication, Basic, howto, htpasswd, mod_auth, Protect, require, security, tips

No comments as yet.

Leave Your Comment

All fields marked with "*" are required.

S	M	T	W	T	F	S
			1	2	3	4
5	6	7	8	9	10	11
12	13	14	15	16	17	18
19	20	21	22	23	24	25
26	27	28	29	30	31

How To Protect a WordPress Site Using Basic Auth in Apache 2.4

No comments as yet.

Leave Your Comment

Our Link Network

Business

Client Websites

Fine Dining

Friends & Family

Galleries

Health

Resources

Technology

Travel

The Archives

Latest Ramblings…

Various Topics of No Interest