WordPress SALT Generator
Generated WordPress SALTs
Step-by-Step: How to Use the WordPress SALT Generator
Step 1: Click ‘Generate New SALTs’ to create a fresh set of 8 cryptographically secure authentication keys.
Step 2: Click ‘Copy All’ to copy the entire block to your clipboard.
Step 3: Access your WordPress root directory via FTP, SFTP, or your hosting provider’s file manager (cPanel or Plesk typically have a built-in file manager).
Step 4: Open wp-config.php. This file lives in the root directory of your WordPress install, the same folder as wp-admin and wp-content.
Step 5: Find the existing SALT block. Search for the line containing AUTH_KEY. You’ll see a block of 8 define() lines, from AUTH_KEY down to NONCE_SALT.
Step 6: Replace the entire block with the new SALTs you copied. Select all 8 existing lines, delete them, and paste the new block in their place.
Step 7: Save and upload. Save the file and upload it back to your server if you edited it locally. The change takes effect immediately.
Important: changing SALTs logs out all currently active users including yourself. Have your WordPress login credentials ready before you make this change.
When to regenerate your WordPress SALTs
- After a suspected security incident: new SALTs immediately invalidate any active sessions, including those belonging to anyone who may have gained unauthorised access.
- After a team member with admin access leaves: ensure their remembered login sessions are invalidated regardless of whether they still have the password.
- After patching a plugin or theme vulnerability: as a precautionary measure following any disclosed security issue on your site.
- When migrating your site to a new server or domain: fresh SALTs are a recommended part of any clean migration process.
- As routine security hygiene: at minimum once per year, even with no specific incident.
NoteIf you’re not comfortable editing wp-config.php directly, your hosting provider or a WordPress developer can apply the change for you. It’s a five-minute task for anyone familiar with the file system. |
Our WordPress development Sydney team maintains SALT rotation and security configurations as standard across every build and ongoing maintenance engagement. If you’d rather have a team manage your WordPress security end-to-end, our website maintenance services covers SALT rotation, plugin updates, and vulnerability monitoring as part of your retainer. While you’re hardening your site, use the Secure Password Generator tool to create a strong wp-admin password if you haven’t already.
Why a WordPress Salt Generator is Important for Your Business
A WordPress SALT Generator Tool is important for businesses that want to strengthen the security of their WordPress websites. SALT keys add an extra layer of encryption to user passwords and login information, making it significantly harder for attackers to gain unauthorised access. By generating unique, secure SALT keys, you reduce the risk of data breaches, session hijacking, and brute-force attacks. With Click Click Media’s WordPress SALT Generator, you can quickly improve your site’s security, protect user data, and maintain trust in your online presence.
Need help?
Get in touch with Click Click Media today to strengthen your WordPress security using our SALT Generator tool.
