An open Wi-Fi network is like leaving the door to your apartment unlocked: convenient for guests, but dangerous for security. According to Kaspersky Lab, 68% of home networks In Russia, accounts are vulnerable to hacking due to weak or absent passwords. If you're reading this article, you've already taken the first step toward protecting your personal data, banking transactions, and smart devices from prying eyes.
But how do you properly password protect your Wi-Fi to avoid connection problems or sudden speed drops? We'll cover not only the basic steps for popular routers (TP-Link, ASUS, Keenetic, Xiaomi), but also the nuances of choice encryption type, password lengths, and ways to test for network leaks. Spoiler: password 12345678 or the name of your street is the worst option.
This article doesn't offer a "magic button" for every router model—manufacturers' interfaces vary. However, we'll provide some general guidelines that work 95% of the time, and we'll also point out where to find the necessary settings if your router is a rare model. Ready? Let's get started with preparation.
1. Preparation: What you need to know before setting up a password
Before you access your router settings, answer three questions:
- Which connection type Do you have a connection to your router? (via cable, Wi-Fi, or a mobile app)
- Did you know? Router IP address and login details for the control panel?
- Do you have a backup of your current settings (in case of failure)?
If the answer to any question is "no," don't worry, we'll help you figure it out.
Most modern routers allow you to change your Wi-Fi password via:
- 🌐 Web interface (the most reliable method, always works)
- 📱 Mobile application (convenient, but not all functions are available)
- 🖥️ Program on PC (rare, usually for corporate devices)
Where can I find my router's IP address? It's usually located on a sticker on the bottom of the device (e.g. 192.168.0.1 or 192.168.1.1). If there is no sticker, check your computer's network settings:
- On Windows: open
Command lineand enter
, find the line "Default gateway".ipconfig - On MacOS: go to
System Preferences → Network → Advanced → TCP/IP. - On Android/iOS: use apps like Fing or WiFi Analyzer.
⚠️ Attention: If you rent a router from a provider (for example, Rostelecom, Beeline, MTS), some settings may be blocked. In this case, please contact support or request administrator rights.
2. Login to the router control panel: login and password
Now that you have the IP address, enter it into your browser's address bar (e.g. http://192.168.0.1). The authorization window will open. This is where many users encounter their first problem: "What login and password should I enter?".
Standard combinations for most routers:
| Manufacturer | Login | Password |
|---|---|---|
| TP-Link | admin | admin or an empty field |
| ASUS | admin | admin |
| Keenetic | — | Individual (indicated on the sticker) |
| Xiaomi/Mi | admin | Wi-Fi password (default) |
| D-Link | admin | Empty field or admin |
If the default data doesn't work, it means someone has already changed it. In this case:
- 🔍 Check the sticker on your router—sometimes the password is listed there.
- 🔧 Reset to factory settings by pressing the button
Reset(usually it is recessed into the body and requires a paper clip). Attention: This will disconnect all users from the network! - 📞 Contact your ISP - they may have access to your router.
3. Select encryption type: WPA3, WPA2 or WEP?
After logging into the control panel, find the settings section wireless network (usually Wireless, Wi-Fi or Security). Here you will be asked to choose encryption type — how securely your network will be protected depends on this.
Let's look at the terms:
- 🔒 WPA3 — the most modern standard (2018). Supports individual encryption for each device and is resistant to brute-force attacks. We recommend, if all your gadgets were released after 2020.
- 🔓 WPA2 — previous standard (2004). Reliable, but vulnerable to attacks KRACKSuitable if you have old devices (such as printers or smart light bulbs).
- ⚠️ WEP — an outdated protocol (1997). It can be hacked in a few minutes, use absolutely not allowed.
- 🚫 Open network — without a password. Dangerous even for guest access.
Which one to choose? The best option is WPA3-Personal (or WPA2/WPA3 Transition, if you have older devices). If your router does not support WPA3, stop at WPA2-AES (don't choose TKIP or WPA2 Mixed - it's less safe).
⚠️ Attention: Some smart devices (such as cameras) Xiaomi or columns Yandex Station) don't work with WPA3. If they refuse to connect after changing encryption, switch back to WPA2.
What is a brute force attack?
Brute force is a hacking method in which a hacker tries millions of password combinations automatically. Modern programs (for example, Aircrack-ng) crack simple passwords in hours. WPA3 is protected against this thanks to the protocol SAE (Simultaneous Authentication of Equals), which makes brute force more difficult.
4. Create a strong password: rules and generators
A weak password negates all efforts to set up encryption. According to NordPass, 23% of users use passwords like qwerty or passwordHow to create a secure Wi-Fi password?
Rules for a secure password:
- 🔢 Length: minimum 12 characters (optimally 16+).
- 🌟 Combination: uppercase and lowercase letters (
A-z), numbers (0-9), symbols (!@#$%). - 🚫 Exclude: names, dates of birth, street names, dictionary words.
- 🔄 Update: Change your password every 6 months (or immediately if you suspect a leak).
Examples good passwords:
Tr0p!c@l_5umm3r$2026,
C0ff33_With_M!lk&H0n3y,
V3ry_L0ng_P@$$w0rd_For_WiFi.
Don't want to come up with your own? Use these generators:
- 🛡️ Passwords Generator (you can customize the length and characters).
- 🔐 1Password Generator (with the option to exclude similar characters).
Password contains ≥12 characters|
There are letters in different registers|
There are numbers and special characters|
The password is not linked to personal data|
Have you remembered your password or saved it in the manager (for example, KeePass or Bitwarden)
-->
5. Step-by-step instructions: how to password-protect Wi-Fi on popular routers
Router interfaces differ, but the general logic is the same: find the section Wi-Fi or Security, change SSID (network name) and set a password. We'll go into detail for top brands.
🔹 TP-Link (Archer, Deco, TL-WR)
- Go to
Basic → Wireless(orWireless mode). - In the field
Wireless PasswordEnter a new password. - In the section
SecurityselectWPA2/WPA3-Personal. - Save settings (
Save).
🔹 ASUS (RT-AX, RT-AC)
- Open
Wireless → General. - In the field
WPA-PSK KeyPlease enter your password. - IN
Authentication MethodselectWPA3-Personal(orWPA2-Personal, if there is no WPA3). - Click
Apply.
🔹 Keenetic (Giga, Hero, Speedster)
- Go to
Wi-Fi network → Access point. - In the block
SecurityselectWPA3. - In the field
Network keyEnter the password. - Save (
Apply).
🔹 Xiaomi/Mi (AIoT Router, Mi Router)
- In the mobile app Mi Wi-Fi go to
Wi-Fi settings. - Click
Change password. - Select
WPA3-SAEin the security type. - Enter the password and save.
⚠️ Attention: After changing the password, all devices will be disconnected from the network. Prepare a list of gadgets that will need to be reconnected in advance (especially smart devices like Google Nest or Amazon Echo).
1) The entered password is correct (case sensitive!).
2) Compatibility of the device with the selected encryption type (WPA3 is not supported by older gadgets).
3) Update the router firmware (sometimes bugs interfere with the connection).-->
6. Security Check: How to Know if Your Wi-Fi Has Been Hacked
You've password-protected your network, but how do you know it's truly secure? 5 Signs of a Hack:
- 🐢 Unexpected drop in internet speed (third-party devices are "eating up" your traffic).
- 🔌 Unknown gadgets appear in the list of connected devices (check in the router panel).
- 💻 Ads or pop-ups on all devices (meaning a hacker is redirecting traffic).
- 📵 Unable to access router settings (the password has been changed by an attacker).
- 🔍 Antivirus detects suspicious activity on the network.
How to check connected devices?
- On TP-Link:
Advanced → Wireless → Wireless Statistics. - On ASUS:
Network Map → Clients. - On Keenetic:
Devices → Device List.
If you saw an unfamiliar MAC address — change your password and encryption type immediately!
Additional protective measures:
- 🔄 Update your router firmware regularly (in the section
AdministrationorSystem). - 🚫 Turn it off
WPS(vulnerable to hacking, even if there is a password). - 🌐 Turn on
Guest networkfor friends, it is isolated from the main one. - 🔍 Use network monitoring apps, such as Fing or GlassWire.
7. Common mistakes and how to avoid them
Even experienced users sometimes make mistakes when setting up a Wi-Fi password. Here are the top 5 mistakes and their solutions:
| Error | Consequences | Solution |
|---|---|---|
| Password is too short (<8 characters) | Easy hack in 10 minutes | Use ≥12 characters with mixed case |
| Choosing WEP over WPA2/WPA3 | The network is vulnerable to attacks | Switch to WPA3 or WPA2-AES |
| Failure to save changes to the router | Password is not applied | Always press Save/Apply! |
| Using the default password | Hackers know standard combinations | Change to a unique password immediately after setup. |
| Disabling encryption for "convenience" | Open access to your data | Use a guest network for temporary guests |
Another common problem: devices do not connect after changing the passwordThere may be different reasons:
- 📵 Incorrect password (check case and characters).
- 🔄 The device does not support WPA3 (try WPA2).
- 🔌 The router did not save the settings (reboot it).
- 🛠️ Firmware failure (update your router software).
What to do if you forgot your Wi-Fi password?
If you forgot your password but still have access to the router control panel:
1. Go to your Wi-Fi settings and look at your current password (sometimes it's displayed as dots, but it can be revealed).
2. If you can’t see it, change your password to a new one.
3. If you don’t have access to the router, reset it to factory settings (button Reset) and configure it again.
8. Additional settings for maximum security
A password is just the first step. For complete network security, we recommend:
- 🔄 Disable remote control of your router (chapter
Administration → Remote Management). This will prevent hacking via the Internet. - 🌐 Change the network name (SSID) to unique (don't leave
TP-Link_1234). This will make it more difficult for hackers to identify the router model. - 🔒 Enable MAC address filtering (chapter
Wireless MAC Filter). Allow connections only to trusted devices. - 📡 Disable SSID broadcasting (hidden network). Disadvantage: You'll have to enter the network name manually on new devices.
- 🛡️ Set up a VPN on your router (if supported). This encrypts all traffic, even if the password is cracked.
Hidden Network (SSID): Pros and Cons
| Pros | Cons |
|---|---|
| The network is not visible in the list of available ones. | Devices need to enter the SSID manually |
| More difficult to connect accidentally | Does not protect against targeted attacks |
| Fewer brute force attempts | Some devices do not support hidden networks. |
For most users it is enough strong password + WPA3 + disabled WPSAdditional measures (such as MAC filtering) are useful, but can complicate the connection of new devices.
⚠️ Attention: Some providers (eg Rostelecom or Dom.ru) block access to advanced router settings. If you can't disable WPS or change the encryption type, contact support and request full administrator rights.
FAQ: Answers to Frequently Asked Questions
🔹 Is it possible to set a Wi-Fi password without accessing the router?
No. To password-protect your network, you need access to the router's control panel. If you don't know the login/password, try:
- View the data on the router sticker.
- Reset the router using the button
Reset(all settings will be reset!). - Contact your provider for login details.
🔹 What password is impossible to hack?
There are no 100% unhackable passwords, but the most secure password is:
- Length ≥16 characters.
- A random set of letters, numbers, and symbols (eg
7H#p9L!q2$vR4*Fg). - Not linked to personal data.
- Stored in a password manager (not on a piece of paper!).
To generate use LastPass Generator.
🔹 Why don't some devices connect after changing the password?
Reasons and solutions:
- The device does not support WPA3 → Switch to
WPA2-Personal. - Incorrect password → Check case and symbols (password is sensitive!).
- Router failure → Reboot it (turn off the power for 30 seconds).
- Outdated firmware → Update your router software in the section
Administration.
🔹 Can I use the same password for my Wi-Fi and my router account?
No! It's dangerous because:
- If a hacker hacks your Wi-Fi, they will gain access to your router's settings.
- An attacker can redirect your traffic or change your DNS.
- If your password is leaked, you will have to change it in two places.
Use different passwords For:
- Wi-Fi networks;
- router control panels;
- provider's personal account.
🔹 How to protect your Wi-Fi from neighbors asking for your password?
Instead of giving up or sharing your master password, set up guest network:
- Find the section in the router panel
Guest network(Guest Network). - Enable it and set a separate password.
- Limit the speed (for example, to 10 Mbps) and operating hours (from 9:00 to 21:00).
- Disable local network access (so that guests cannot see your devices).
Benefits of a guest network:
- 🔒 The main network remains secure.
- 📶 You can limit traffic for guests.
- 🕒 Easily disable access at any time.