Back to Home

WordPress Security (SALT) Keys Generator

Generate secure authentication keys and salts to enhance your WordPress website security

1
Configure
2
Generate
3
Copy & Use

Configuration Options

Longer keys provide better security but may impact performance
Higher complexity provides better security
AUTH_KEY, SECURE_AUTH_KEY, LOGGED_IN_KEY, NONCE_KEY, AUTH_SALT, SECURE_AUTH_SALT, LOGGED_IN_SALT, NONCE_SALT

Security Options

Security Note: Changing your SALT keys will log out all users. This is a security feature that invalidates existing sessions.
Ensures keys are different from any other WordPress installation

About WordPress SALT Keys

What are SALT Keys in WordPress?

SALT keys in WordPress are actually Authentication Unique Keys and Salts that are placed in the wp-config.php file. These are a set of security keys used for hashing user cookie and session information.

In simple terms:

When a user logs into your WordPress site, WordPress stores their authentication information in cookies.

To prevent this information from being guessed or manipulated, WordPress encrypts it using SALT keys.

The more random and stronger these keys are, the higher the security for user and admin logins.

These keys typically include 8 values:
AUTH_KEY
SECURE_AUTH_KEY
LOGGED_IN_KEY
NONCE_KEY
AUTH_SALT
SECURE_AUTH_SALT
LOGGED_IN_SALT
NONCE_SALT
Important: After updating your SALT keys, all users will be forced to log in again (cookies become invalid). This significantly increases the security of sessions and site logins.
How to use them:

In the wp-config.php file, there is a section for these keys.

You can use the official WordPress service to generate strong, random keys:

https://api.wordpress.org/secret-key/1.1/salt/

Each time you open this link, a new set of keys and SALTs are generated.

Simply replace the previous values in the wp-config.php file with the new content.

Why Use Our SALT Keys Generator?

Enhanced Security

Generate cryptographically secure random keys that significantly improve your WordPress site’s security against attacks.

Session Protection

Protect user sessions and prevent session hijacking with strong, unique authentication keys.

Easy Regeneration

Quickly regenerate keys whenever needed to maintain security, especially after security incidents.

Frequently Asked Questions

When you change your SALT keys, all users currently logged into your WordPress site will be immediately logged out. This is a security feature that invalidates all existing sessions and cookies. Users will need to log in again with their credentials.

It’s recommended to change your SALT keys:
  • After a security incident or suspected breach
  • When key personnel leave your organization
  • As part of regular security maintenance (every 6-12 months)
  • When migrating your site to a new server

No, changing SALT keys won’t break your WordPress site. It will only log out all users. However, it’s always a good practice to backup your wp-config.php file before making any changes, and to make the changes during low-traffic periods to minimize disruption.