Using a Custom Admin URL
As a security best practice, Magento recommends that you use a unique, custom Admin URL instead of the default admin or a common term such as backend. Although it will not directly protect your site from a determined bad actor, it can reduce exposure to scripts that try to gain unauthorized access.
Check with your hosting provider before implementing a custom Admin URL. Some hosting providers require a standard URL to meet firewall protection rules.
In a typical Magento installation, the Admin URL and path is immediately below the Magento base URL. The path to the store Admin is one directory below the root.
- Default Base URL:
- Default Admin URL and Path:
Although it is possible to change the Admin URL and path to another location, any mistake removes access to the Admin, and must be corrected from the server.
As a precaution, do not try to change the Admin URL by yourself unless you know how to edit configuration files on the server.
Method 1: Change from the Magento Admin
On the Admin sidebar, go to Stores > Settings > Configuration.
In the left panel, expand Advanced and choose Admin.
Expand the Admin Base URL section.
Set the configuration options for the custom URL:
If needed, clear the Use system value checkbox to change the setting.
Set Use Custom Admin URL to
Enter the Custom Admin URL:
The Admin URL must be in the same Magento installation, and have the same document root as the storefront.
Set Custom Admin Path to
Enter the Custom Admin Path.
The path that you enter is appended to the Custom Admin URL after the last forward slash.
When complete, click Save Config.
After the changes are saved, Sign Out of the Admin. Then, log back in using the new Admin URL and path.
Method 2: Change from the Server Command Line
app/etc/env.phpfile in a text editor, and change the name of the
[admin]path. Make sure to use only lowercase characters. Then, save the file.
On the server, the admin path is located in the
app/etc/env.phpfile. Look for the
<adminhtml>argument in the
Default Admin Path
New Admin Path
Use one of the following methods to clear the Magento cache:
- On the Admin sidebar, go to System > Tools > Cache Management. Then, click Flush Magento Cache.
- On the server, navigate to the
var/cachefolder and delete the contents of the