What is the 403 Forbidden Error & How to Fix it (3 Methods Explained)
If you are reading this, you recently came across an error message saying 403 Forbidden – you don’t have permission to access / on this server. And most likely, you have no idea what it is all about. Well, don’t worry! This is a quite common scenario that many web users run into.
In short, follow these steps in order to fix the 403 forbidden error:
- Check or reset/rename your .htaccess file
- Reset file and folder permissions
- Disable WordPress plugins
If you want to take a more depth look, keep reading this tutorial. You are going to learn about the reasons that might be liable for a 403 forbidden error and ways to get rid of it. As an example, we will show you how to fix this error on a WordPress site. However, steps would be almost identical on any other CMS or static websites.
Let’s get started!
What is the 403 Forbidden Error?
Before we dig deeper and try to fix the Error, let’s first understand what it actually is. It is an HTTP status code. When you encounter this error message, you are basically trying to reach an address or a website that is forbidden to access.
Here are examples of some these errors that are commonly thrown:
-
Forbidden: You don't have permission to access [directory] on this server
-
HTTP Error 403 – Forbidden
-
403 forbidden request forbidden by administrative rules
-
403 Forbidden
-
Access Denied You don't have permission to access
So what causes these errors? Let’s find out.
Causes of 403 Forbidden Error
Getting a 403 Error in the middle of development might seem disturbing. But before we can fix it, we need to know about the actual reason causing it. The simple reason why we are seeing this error is that you are trying to access something you don’t have the permission for. Throwing a 403 forbidden error is your website’s way of stating that you don’t have enough permissions to proceed further.
This error is basically due to:
- Incorrect file or folder permissions
- Incorrect settings in the .htaccess file
That said, let’s have a quick look at how you can make it disappear.
Fixing the Error 403 Forbidden Message
Now that we know the various factors causing the error, it is time to look at how to get rid of it. The steps mentioned here mainly focus on WordPress, but they can be applied to other websites as well. Let’s go through some of the steps involved:
Check .htaccess File
You may not be familiar with the .htaccess file. This is because the file often remains hidden in the project directory. However, if you are using Hostinger File Manager, you should be able to see .htaccess by default in your hPanel.
In other cases, for example, if you are using a cPanel, it can be done by accessing your hosting Control Panel with the help of File Manager. Let’s go through the steps involved:
- Locate File Manager from the hosting Control Panel
- In the public_html directory, look for .htaccess file.
- If you do not come across any .htaccess, you can click on Settings and enabled Show Hidden Files (dotfiles) option.
To help you understand the .htaccess file better – it’s a server configuration file and mainly works by altering the configuration on the Apache Web Server settings.
Although the .htaccess is present in almost all WordPress websites, in some rare events, when your website doesn’t have a .htaccess or is deleted unintentionally, you need to create a .htaccess file manually.
Now, that you have found your .htaccess, all you need to do is:
- Download the .htaccess to your computer to have a backup of it.
- Once done, delete the file.
- Now, try accessing your website.
- If it works fine, this simply indicates that your .htaccess file was corrupt
- To generate a fresh .htaccess file, login to your WordPress dashboard, and click on Settings › Permalinks.
- Without making any changes click the Save Changes button at the bottom of the page.
- This will generate a fresh .htaccess file for your website
However, if this doesn’t solve the issue, move onto the next method.
Reset File and Directory Permissions
Another reason for encountering a 403 Error Forbidden message is bad permissions for your files or folders. In general, when files are created, they come with certain default permissions. These basically control how you can read, write, and execute the files for your use.
If you’re using Hostinger, there’s a special tool that will take care of all your permission problems in just a single click. Enter Fix File Ownership in the search bar or scroll to the bottom of your control panel to Other and locate it there.
This tool will save you loads of time and will restore all file and directory permissions to default values.
However, a FileZilla FTP client also provides all you need to edit file and folder permissions. To begin, you should:
- Access your website files using any FTP client.
- Navigate to the root directory of your hosting account.
- Select the main folder which contains all your website files (usually it’s public_html), right-click on it and select File Attributes.
- Select Apply to directories only, enter permission 755 in the Numeric value field and press OK.
- Once FileZilla is done changing folder permissions repeat step 3, but this time select the Apply to files only option and enter 644 in the Numeric value field.
- Once done, try accessing your website now, and see if the 403 forbidden error is solved.
If you want to get a better insight on how file and folder permissions work in a Linux environment or learn to use the command line to change permissions, see this tutorial.
However, if nothing seems to happen, it is time to move onto the next method.
Disable WordPress Plugins
If you have come this far, chances are high that the error was thrown due to an incompatible or faulty plugin. In this step, we will try disabling plugins to see if it fixes the 403 Forbidden Error.
The best thing to do would be to disable all the plugins at once instead of going through the process individually. With this step, you would be able to detect the problem and work towards a solution. Here is what you have to do:
- Access your hosting account with FTP and look for the public_html folder (or the folder containing your WordPress installation files).
- Locate the wp-content folder on the page.
- Locate the Plugins folder, and rename it something different like “disabled-plugins” so that it is easier to keep track of.
Once you have disabled all the plugins, try accessing your website again. Did this fix the 403 forbidden problem? If yes, a problematic plugin is the actual source of error. Try deactivating your plugins one by one, and check if your website is back in working action now. This way you will be able to detect the faulty plugin.
You can then choose to update the plugin if it is necessary or install a new one. However, if nothing of the above-mentioned steps worked for you (which is rare!) and the error message still appears, you may need to contact your hosting provider.
Note: If you have recently migrated from one web host to another, and forgot to change your nameservers, your domain may still be pointing to your old web host. This can be a problem when they cancel your account, resulting in a 403 Error. So make sure your site is pointing to the right place. For more information, check out this tutorial.
Wrapping Up
By following the methods listed above, you can get rid of the 403 forbidden error. We understand that this error message causes great frustration as you can’t access your website or a web page. Nevertheless, follow the above-mentioned steps one by one, and we’re sure, you’ll be able to bring your website back to action.
We hope that the above tutorial was easy to follow. For more comprehensive WordPress tutorials, tips and cheat-sheets check this page.
Domantas leads the content and SEO teams forward with fresh ideas and out of the box approaches. Armed with extensive SEO and marketing knowledge, he aims to spread the word of Hostinger to every corner of the world. During his free time, Domantas likes to hone his web development skills and travel to exotic places.
Comments
March 04 2019
Thanks for the post. The fix for me was one of the plugins that was causing it.
August 30 2019
oh, very helpful!!! thanks!
April 21 2020
FINALLY!! After going through and checking Cloudflare security settings, Sucuri firewalls, Wordfence IPs, deleting/disabling ALL plugins, checking web server resources and a whole lot more 'fixes' that so many others have recommended ... simply deleting the .htaccess file did the trick. Thank you so much for a great resource!
May 13 2020
Thank you, this was very helpful!
June 11 2020
I am so happy this worked and I did not contact anyone from support. * THE MORE YOU KNOW*
July 05 2020
Thanks. This has cured the error on my site. You might want to add to the article that it can take quite some time for the Permissions to change. So far mine are still going and taking over half an hour.
July 07 2020
Happy to help, Bernie! :) If your changes take a while to reflect, try clearing your browser cache. We have a tutorial for that here.
August 06 2020
good
August 21 2020
Just I can say Thank thank and thank you this was very helpful You are perfect
August 25 2020
You are very welcome, Reza! Thank you for your kind words!
August 22 2020
I had this anonymous mail from wordcamp@wordpress.com which registered itself as an admin to my website and later i am still unable to retrieve it after doing all the steps given above I need instant help
November 11 2020
Hey Harshit! :) Looks like your website got hacked. Check this guide here. You can also follow our guide here on how to clean your website up! :) Good luck.
September 08 2020
Thank You so much. 403 forbidden issue solve: it was because the .htaccess file was corrupted. How? 1) Downloaded the .htaccess from Cpanel to have a backup of it. and then, deleted the file. 2) Generated a fresh .htaccess file, by login to the WordPress dashboard, and click on Settings › Permalinks. 3)Without making any changes I clicked on the save changes button at the bottom of the page. and it generated a fresh .htaccess file for me And my issue just got fixed
November 11 2020
Hey Muhammad. Thanks for the input. Glad it worked.
September 26 2020
Hi,i i did everything but still my issue is not resolved. What else can be the problem. Is it possible to have a problem from hosting provider?
November 18 2020
Hey there Zubair. Please make sure you are pointing to the correct nameservers/IP address. Additionally, you can message our Success team and they will gladly help you out.
November 13 2020
I have tried all 3 above methods to explained but my problem is still not resolve. Please let me know if any other solution is possible. 403 Forbidden Access to this resource on the server is denied!
February 02 2021
Hi there! If this doesn't help, I'd suggest you contact our Customer Success team to help you troubleshoot ;)
November 18 2020
Thank you so much for this. I tried so many other "solutions" from other sites, but this went straight to the issue and I could fix it in minutes. Deleting .htaccess instantly solved my problem. You officially rock!
February 09 2021
Happy it helped, Trevor!
November 30 2020
403 Access Denied I have seen these error on my site and it's not solved by the above answer. Please help me.
February 09 2021
Hi! It could be that the issue is coming from your host's side. If all of the options above didn't help resolve it, I'd suggest checking with your host to help you troubleshoot :)
December 09 2020
I have a website (wordpress) and this works well. If I log in as a member this works fine but if I log in as an administrator I get “Forbidden You don’t have permission to access on this server.” in front page and admin page. If I delete cookies the site is online again. I follow all step I delete .htaccess file I have change the permitions in all folders (755) and all files (644) with ftp. I have rename plugin folder, but nothing... Any idea?
February 09 2021
Hi, Panos! If disabling .htaccess and plugins didn't help, I'd suggest checking with our Customer Success team - they'll be happy to help you troubleshoot further :)