Password-protecting directories via cPanel

Call Us 0800 107 7979

Service Status

Back to knowledgebase

Last updated: 30 March 2021

cPanel’s Directory Privacy page lets you password-protect a website directory. When you visit a protected page you get a password prompt, and to get access you need to enter the correct user name and password.

Adding password protection is not difficult but the process is not very intuitive. So, let’s look at an example…

Selecting a directory

The Directory Privacy page lists all folders in your home directory. You can navigate to the directory you want to protect by clicking on the folder icons. Once you have found the directory you can select it by clicking on the name. For instance, in the below image I navigated to the public_html directory. To protect the private_files folder I next click on the folder name.

Image: selecting the ‘private-files’ folder.

Note: To password-protect your entire website you can simply select the public_html directory.

Adding password protection

Protecting a directory is a two-step process:

You first need to tick the Password-protect this directory checkbox.
Next, you need to enter a name for the protected directory. Most web browsers show this name when you try to access the directory (more about that in just a moment).

Creating a user

At this point we have password-protected the directory. However, we haven’t yet created a user name and password. As things stand nobody can access the folder.

The next step is therefore to choose a user name and password. In the below example I am creating the user Fruitcake:

Image: creating a user that may access the directory.

And that’s it, anyone who now tries to access example.net/private-files is prompted for a user name and password. If they enter the wrong logins they will see an error 401 (“Access Denied”).

Image: The password prompt.

As you can see in the above image, the name we entered for the folder (“Private files”) is shown in the dialogue window. You can use the name to give the user a hint. For instance, instead of “Private files” you can use the name “your favourite lunch”. In that case web browsers show the message: ‘The site says: “your favourite lunch”‘.

Managing user accounts

You can create more than one authorised user. Users you add are listed at the bottom of the page, with the option to delete the user.

Removing password protection

Removing the password protection is again a two-step process:

Navigate to the directory
Untick the Password-protect this directory checkbox

Featured Blogs

How Managed Dedicated Servers Can Impact Your Website’s ROI

7th August 2023

By catalyst2 Team

Having a good online presence is crucial for businesses of all sizes. A high-performing website not only acts as a virtual storefront but also provides a powerful tool for marketing and revenue generation. Although there are costs associated with website development, maintenance and online marketing campaigns, your return on investment (ROI) can be significant if …

Read Article

The Importance of Regular Server Backups

31st July 2023

By catalyst2 Team

Without a server, your website wouldn’t be visible on the internet. A server provides the infrastructure and resources you need to deliver your website pages to visitors, and it’s key to ensure you’re choosing the right server for your needs. From Virtual Private Servers and cloud servers to dedicated servers, there is a wide range …

Read Article

Useful Server Advice for Start-Up Businesses

27th July 2023

By catalyst2 Team

In today’s digitally driven world, a website is a key marketing tool for start-up businesses. As you venture into new and exciting markets, a well-designed website is crucial for helping you to establish an online presence and engage with potential customers. It acts as a platform to showcase your products, services and USPs. Not to …

Read Article

What is Server Downtime and How Can it be Avoided?

12th July 2023

By catalyst2 Team

More so than ever before, people are reliant on the internet to find the products or services they need. So, server downtime can have a significant impact on businesses of all sizes. It is particularly detrimental to e-commerce businesses and those who operate solely online, and the importance of finding a reliable hosting solution can’t …

Read Article

Maximising Website Performance With a Dedicated Server

26th June 2023

By catalyst2 Team

More so than ever before, a website is a crucial aspect of any business. It’s often the first point of contact between a company and prospective customers, and it can have a direct impact on whether or not someone chooses to invest in their products or services. Therefore, it’s essential to ensure that any website …

Read Article

Why VPS Hosting is the Perfect Solution for Growing Websites

12th June 2023

By catalyst2 Team

In today’s digital age, having a good online presence is essential if you want to grow your business and expand into new markets. With more and more people relying on the internet to find products and services, having a website is no longer optional, but a necessity. Arguably, websites are even more important for smaller, …

Read Article

The Importance of Server Security

17th May 2023

By catalyst2 Team

With the increasing importance of the internet in our lives, websites have become the online faces of businesses, providing a platform for customers to learn more about brands and their products or services. A website is often the first point of contact between a potential customer and a business, and it’s become a critical component …

Read Article

Common Misconceptions About Dedicated Server Hosting

28th April 2023

By catalyst2 Team

Dedicated servers are becoming an increasingly popular solution for businesses that are looking for enhanced reliability for their websites or applications. With dedicated server hosting, businesses have an entire server dedicated to their needs, providing them with full control and flexibility over their hosting environment. Unlike shared hosting, where multiple users share the resources of …

Read Article

Finding the Best Server Solution for a High-Traffic Website

18th April 2023

By catalyst2 Team

High-traffic websites are websites that attract a large volume of visitors. These websites often have large user bases, provide a wide range of services and generate significant revenue. Examples of common high-traffic websites include online retail stores, news websites, social media channels and video-streaming services. When you have a high-traffic website, it’s incredibly important to …

Read Article

What to Look For in a Dedicated Server Hosting Provider

6th April 2023

By catalyst2 Team

Dedicated website servers are the ultimate solution for businesses looking for the highest level of performance and reliability. When compared to shared hosting solutions, they offer more control, flexibility and scalability, and they can be tailored to meet the needs of any website. They provide dedicated resources to ensure that websites run efficiently and securely, …

Read Article

What our clients say

Great real person support – direct phone number, usually the same individual so any problems are handled by the same people. Excellent.

Daniel Chandler, Vindico UK Ltd

Privacy Overview

This website uses cookies to improve your experience while you navigate through the website. Out of these cookies, the cookies that are categorized as necessary are stored on your browser as they are essential for the working of basic functionalities of the website. We also use third-party cookies that help us analyze and understand how you use this website. These cookies will be stored in your browser only with your consent. You also have the option to opt-out of these cookies. But opting out of some of these cookies may have an effect on your browsing experience.

Necessary

Always Enabled

Functional

Functional cookies help to perform certain functionalities like sharing the content of the website on social media platforms, collect feedbacks, and other third-party features.

Cookie	Duration	Description
bcookie	2 years	LinkedIn sets this cookie from LinkedIn share buttons and ad tags to recognize browser ID.
bscookie	2 years	LinkedIn sets this cookie to store performed actions on the website.
lang	session	LinkedIn sets this cookie to remember a user's language setting.
lidc	1 day	LinkedIn sets the lidc cookie to facilitate data center selection.
UserMatchHistory	1 month	LinkedIn sets this cookie for LinkedIn Ads ID syncing.

Performance

Analytics

Analytical cookies are used to understand how visitors interact with the website. These cookies help provide information on metrics the number of visitors, bounce rate, traffic source, etc.

Cookie	Duration	Description
_ga	2 years	The _ga cookie, installed by Google Analytics, calculates visitor, session and campaign data and also keeps track of site usage for the site's analytics report. The cookie stores information anonymously and assigns a randomly generated number to recognize unique visitors.
_gat_gtag_UA_5562310_11	1 minute	Set by Google to distinguish users.
_gid	1 day	Installed by Google Analytics, _gid cookie stores information on how visitors use a website, while also creating an analytics report of the website's performance. Some of the data that are collected include the number of visitors, their source, and the pages they visit anonymously.
CONSENT	2 years	YouTube sets this cookie via embedded youtube-videos and registers anonymous statistical data.

Advertisement cookies are used to provide visitors with relevant ads and marketing campaigns. These cookies track visitors across websites and collect information to provide customized ads.

Cookie	Duration	Description
_fbp	3 months	This cookie is set by Facebook to display advertisements when either on Facebook or on a digital platform powered by Facebook advertising, after visiting the website.
fr	3 months	Facebook sets this cookie to show relevant advertisements to users by tracking user behaviour across the web, on sites that have Facebook pixel or Facebook social plugin.
IDE	1 year 24 days	Google DoubleClick IDE cookies are used to store information about how the user uses the website to present them with relevant ads and according to the user profile.
test_cookie	15 minutes	The test_cookie is set by doubleclick.net and is used to determine if the user's browser supports cookies.
VISITOR_INFO1_LIVE	5 months 27 days	A cookie set by YouTube to measure bandwidth that determines whether the user gets the new or old player interface.
YSC	session	YSC cookie is set by Youtube and is used to track the views of embedded videos on Youtube pages.
yt-remote-connected-devices	never	YouTube sets this cookie to store the video preferences of the user using embedded YouTube video.
yt-remote-device-id	never	YouTube sets this cookie to store the video preferences of the user using embedded YouTube video.

Others

Other uncategorized cookies are those that are being analyzed and have not been classified into a category as yet.

Cookie	Duration	Description
_ashkii	session	No description available.
_wicasa	3 months	No description available.
AnalyticsSyncHistory	1 month	No description
cookid	3 months	No description available.
cookietest	session	No description
crisp-client/domain-detect/1644827320973	session	No description
crisp-client/domain-detect/1644827348275	session	No description
crisp-client/domain-detect/1644827428415	session	No description
crisp-client/domain-detect/1644827479357	session	No description
crisp-client/domain-detect/1644827596454	session	No description
crisp-client/domain-detect/1644827724838	session	No description
crisp-client/domain-detect/1644827824383	session	No description
crisp-client/domain-detect/1644827878659	session	No description
crisp-client/domain-detect/1644828716243	session	No description
crisp-client/domain-detect/1644828846246	session	No description
crisp-client/domain-detect/1644829369013	session	No description
crisp-clientsession30cc6953-ebcf-4bc6-b649-c44eb446409e	6 months	No description
dbmFP	3 months	No description available.
dbmPK	3 months	No description available.
li_gc	2 years	No description