Best Password Plugins for WordPress

Written by Jean Galea
Written by Jean Galea
Unsafe passwords are a major cause of WordPress being hacked, so lets see what plugins can help us out in this department. Here are the ones I use on my sites.

Partner Sponsors


Full disclosure: If you purchase through a link on our site, we may earn a commission. Learn more.

Unsafe passwords are a major cause of WordPress being hacked, so lets see what plugins can help us out in this department. Here are the ones I use on my sites:

Force Strong Passwords

The WordPress user profile includes a JavaScript-powered indicator as a guide to the strength of a password being entered. However, there is nothing to stop users entering weak passwords.

Often, users changing their password to something very weak is the most vulnerable aspect of a WordPress installation. This plugin duplicates the WordPress JavaScript password strength check in PHP, and forces users with executive powers to use a strong password.

Download Force Strong Passwords

Simple User Password Generator

WordPress › Simple User Password Generator « WordPress Plugins

Users with the ability to manage users (administrators) have a new button on the add and edit user screens to generate a secure password.

Also adds an option to encourage the user to change their password, when logged in to the dashboard, as well as an option to send existing users the new, generated password.

No new settings pages or configuration screens, nothing added to the database. Just install and go!

Download Simple User Password Generator

If you enjoyed this post, make sure to subscribe to WP Mayor’s RSS feed.

This article was filed in our archives.
Written by Jean Galea
Jean Galea is an investor, entrepreneur, and blogger. He is the founder of WP Mayor, the plugins WP RSS Aggregator and Spotlight, as well as the podcast. His personal blog can be found at

In this article

Discover More

One Response

  1. Passwords are a weak link in any authentication and sending new passwords in a plain text email is very poor security. You can increase security by always using very long strong passwords made up of upper & lower case letters, numbers and special characters and always use lastpass to store unique passwords for every single login. However our favourite is Launchkey for two factor authentication without passwords at all

Share Your Thoughts

Your email address will not be published. Required fields are marked *

New discoveries, every week.
Join thousands of designers, developers, and builders that come to WP Mayor to find the best guides, tools, and services for their next website. One email, once a week.
WP Mayor Newsletter

Claim Your Free Website Tip 👇

Leave your name, email and website URL below to receive one actionable improvement tip tailored just for your website within the next 24 hours.

"They identified areas for improvement that we had not previously considered." - Elliot

By providing your information, you'll also be subscribing to our weekly newsletter packed with exclusive content and insights. You can unsubscribe at any time with just one click.

What's missing?