infoWordPress Core•apiREST APIwebwordpresserrorerroradmin_panel_settingspermissionssecurityfirewall•labelCommon•warningModerate

401 Unauthorized

The 401 Unauthorized status tells the browser that the request lacks valid authentication. WordPress returns this code when login credentials, tokens, or server rules reject the request.

Typical triggers include wrong passwords, expired API tokens, .htaccess restrictions, file permission problems, or firewall blocks. When the server fails to verify the user, it stops access to admin pages, REST endpoints, and protected content.

Symptoms

[dashicons-warning]

Login form reloads

The login page refreshes without granting access.

[dashicons-admin-users]

Authorization pop‑up

Browser shows an Authorization Required dialog.

[dashicons-admin-network]

API calls return 401

REST or AJAX requests show a 401 status in the console.

[dashicons-lock]

Admin area blocked

Access to /wp-admin/ is denied for logged‑in users.

Common Causes

Incorrect credentials

User name or password is wrong or outdated.

Expired authentication token

API or JWT token has expired or been revoked.

Faulty .htaccess rules

Basic auth, redirects, or deny directives block access.

File permission errors

wp‑admin, wp‑login.php, or related directories have wrong permissions.

Security plugin or firewall block

ModSecurity, Wordfence, or Sucuri rejects the request.

Need this fixed right now?

Don't waste your day debugging. Our experts can Fix your issues in under 2 hours.*

Success Rate

100% Guaranteed

Starting from

$35 /hour

99+

Trusted by Business Owners

“I spent 3 days trying to fix the Elementor loading loop. These guys fixed it in 20 minutes. Lifesavers!”

— Sarah J., Web Designer

Related Issues

Contact Form 7: REST API request failed: 503 Service Unavailable

A 503 Service Unavailable response stops Contact Form 7 from sending data...

apiREST APIerror503descriptioncontact-form-7

Contact Form 7: REST API request failed: 429 Too Many Requests

The form tries to send data through the WordPress REST API. The...

apiREST APIerrorerrorsecurityfirewalldescriptioncontact-form-7settingsserver_configuration

Contact Form 7: REST API request failed: 401 Unauthorized

The form tries to send data via the WordPress REST API. The...

apiREST APIadmin_panel_settingspermissionsdescriptioncontact-form-7lock401

Contact Form 7: File upload error: temporary directory missing

The error appears when Contact Form 7 cannot locate a writable temporary...

codePHPcloud_offupload erroradmin_panel_settingspermissionsdescriptiontemporary filedescriptioncontact-form-7

Contact Form 7: Mail (2) sending failed: PHP mail() function disabled

Contact Form 7 reports a failure for Mail (2) when the PHP...

codePHPerrorerrordescriptioncontact-form-7mailMailsettingsserver_configuration

Contact Form 7: Mail (2) sending failed: SSL certificate verification failed

Contact Form 7 reports a failure when trying to send the secondary...

errorerrorlocksslcodecURLdescriptioncontact-form-7