Table of contents

Why you might need to changeUse the “Lost your password?”Through WordPress dashboardVia phpMyAdmin Use WP-CLI to resetBest practicesFAQsNext stepsAdditional resources

Get the industry’s fastest hosting for WordPress◦ 99.999% uptime
◦ Comprehensive security
◦ 24/7 support

WordPress Guide → Users → Change Password

How to change a WordPress password

Lost access or just ready for a reset? Whether you’re locked out or want a stronger password, WordPress gives you multiple ways to change it. We’ll walk you through every method—step-by-step.

Get fast, reliable hosting for WordPress

Power your site with the industry’s fastest, most optimized WordPress hosting

WordPress.org hosting

Why you might need to change your WordPress password

Before jumping into instructions, it’s helpful to understand a few common reasons for changing a WordPress password:

You forgot it and can’t log in.
You suspect your site was hacked.
You’re tightening up your security hygiene.
You’re handing the site over to a new owner or team member.

Method 1: Use the “Lost your password?” link on the login screen

This method is the easiest if you’ve forgotten your password and can’t get into the dashboard.

Go to your WordPress login screen (typically yourwebsite.com/wp-login.php).
Click “Lost your password?” under the login form.
Enter your username or email address associated with the site.
Open the password reset email sent to your inbox.
Click the reset link and create a new password.

Make sure your admin email is current. If your password reset email doesn’t arrive, you may need to use another method below.

Method 2: Change your password through the WordPress dashboard

If you’re already logged in, changing your password is quick and simple.

In your WordPress admin area, go to Users > Profile (or All Users and select your account).
Scroll to the Account Management section.
Click the Set New Password button.
Either keep the generated strong password or type your own.
Click Update Profile (or Update User) to save the changes.

WordPress will show a strength meter below the password field. Avoid weak passwords, even if WordPress lets you use them.

Method 3: Change your password via phpMyAdmin (advanced)

If you’re locked out and the email reset isn’t working, you can manually change your password using phpMyAdmin in your hosting control panel.

Log in to your web host’s control panel (like cPanel or Plesk).
Open phpMyAdmin.
In the sidebar, select your WordPress database.
Click on the wp_users table (it may be prefixed differently).
Locate your admin username and click Edit.
Find the user_pass field. Type your new password here.
In the Function column next to user_pass, select MD5 from the dropdown.
Scroll down and click Go or Save to apply changes.

Your new password is now set, and you can log in normally. If you’re using this method, be very cautious: editing your database directly can break your site if done incorrectly.

Method 4: Use WP-CLI to reset your password (for developers)

For those managing WordPress via SSH, the command-line tool WP-CLI is a fast and secure way to reset a password.

Connect to your server via SSH
Navigate to your WordPress directory.
Run:
wp user update USERNAME –user_pass=”NEWPASSWORD”
Replace USERNAME with your login and NEWPASSWORD with your desired password.

WP-CLI is especially helpful on staging or dev environments where email reset links don’t work.

Best practices for creating a strong WordPress password

WordPress powers over 40% of the internet, making it a top target for brute-force attacks. Weak passwords are often the first vulnerability exploited.

Use a password generator to create something random.
Avoid common words, birthdates, or your site name.
Make it at least 12 characters long.
Mix uppercase, lowercase, numbers, and symbols.
Use a password manager like 1Password or Bitwarden to keep it saved.

If your site allows multiple users, consider enforcing strong passwords with a plugin like Password Policy Manager.

FAQ: WordPress password changes

You can change it from the dashboard under Users > Profile, use the “Lost your password?” link on the login screen, or reset it through phpMyAdmin or WP-CLI if you’re locked out.

WordPress doesn’t display your password for security reasons. If you forget it, you’ll need to reset it using the login screen, dashboard, or database tools.

If you’re running WordPress locally (with MAMP, XAMPP, Local, etc.), use phpMyAdmin to change the password in the wp_users table. Follow the same MD5 encryption method listed above. Or use WP-CLI if you’ve installed it locally.

The WordPress dashboard doesn’t allow changing usernames directly. To change your login name:

Create a new admin user with the desired username.
Log in with the new account and delete the old one.
Reassign content to the new user during deletion.

Alternatively, advanced users can edit the user_login field in the database via phpMyAdmin—just back up your database first.

Next steps for changing your WordPress password

Changing your WordPress password is a quick but essential part of keeping your site secure. Whether you’re locked out or just doing regular upkeep, WordPress offers several ways to update your credentials.

If you’re managing multiple users or accounts, now’s a good time to review overall security settings, enable two-factor authentication, or even add a security plugin.

Ready to upgrade your WordPress experience? Professional hosting improves speeds, security, and reliability for a website and a brand that people find engaging and trustworthy. Liquid Web’s WordPress hosting options configure business-class servers and support plans specifically for WordPress websites.

Don’t want to deal with server management and maintenance? Our fully managed hosting for WordPress is the best in the industry. Our team are not only server IT experts, but WordPress hosting experts as well. Your server couldn’t be in better hands.

Click through below to explore all of our hosting for WordPress options, or chat with a WordPress expert right now to get answers and advice.