Change Magento Login to Case Sensitive

Posted on February 22nd, 2016

The tools for ethical hacking and hacking are improving day by day. With the use of cloud, bad guys can get too many resources to run tests on many websites with huge databases. With this situation, the importance of cybersecurity is very high. Most of the open-source projects like Magento allow you to update security settings without adding any additional extensions. With the help of security settings, you can make your eCommerce store secure.

One of the most important tasks is to make the user login username case-sensitive. It is because making it case sensitive will increase the possibilities exponentially. For example, let’s say you have set a username to “admin” and the user login is not case sensitive. In this case, anything containing these characters in order will allow anyone to log in. We can also use “aDmiN” to successfully log in to the admin panel.

Making it case sensitive will significantly decrease the chances of facing a successful brute-force attack. In this tutorial, I am going to show you how to make user login case-sensitive in Magento.

Make the User Login Case Sensitive in Magento

Let’s get started with the tutorial. First of all, log in to the admin panel and click on the System option given on the main menu. It will reveal all the options available under the system. Find and click on the Configuration option, just like the following image.

Make login case sensitive in Magento - Step 1

On this page, in the left sidebar, click on the Advanced -> Admin option to navigate to the page where we can update security settings in Magento. Refer to the following screenshot to understand where to look for this option.

Make Login case-sensitive in Magento - Step 2

On this page, you can update all the major settings in your store. You will see six collapsed sections. Click on the Security to expand the security section which contains the setting we need.

Make login case sensitive in Magento - Step 3

In this section, find Login is Case Sensitive selector and update it to Yes just like the following image. You can also update some other settings if you want.

Make login case sensitive in Magento - Step 4

After updating the settings, click on the Save Config button given on the top-right corner of the section to apply the changes.

Make login case sensitive in Magento - Step 5

So, this is how you can change user logins to case sensitive. It is an important task to improve the security of your Magento store. If you are facing any issues enabling case sensitive logins, please let us know in the comment section given below. We will get back to you with help as soon as possible.

2 Responses to “Change Magento Login to Case Sensitive”

  1. Uttam Thakor says:


    The information you provided is to change the login config for the Admin panel user. Do this same configuration work for the front end users?


Leave a Reply