Add password protection to the FreePBX splash page /var/www/html
Unfortunately this sort of defeats the purpose of using the 'Admin' module in FreePBX as it adds an additional log in step beforehand. If you use the same username/password you don't need to log into the admin section again. This is probably the best solution until the FreePBX team adds this security to their Admin module.
mkdir -p /usr/local/apache/passwd
htpasswd /usr/local/apache/passwd/wwwpasswd NewUserName
Apache will prompt you for a new password for the user name you've just indicated
Apache will prompt you to retype your new password
Re-type new password:
Apache will then confirm the new user
Adding password for user NewUserName
Now you have to add the user name you've just created to the "httpd.conf" file. To edit that file in "nano" type:
Now do a CTRL-W to search for "AuthUser" and you'll find the area where all the users are listed (for example: "maint", your AMP user). If you don't find any try around line 587 right after the cgi-bin "<Directory....." entry.
Now add the following lines:
#Password protect the FreePBX Splash Page /var/www/html
AuthName "Restricted Area"
Require user NewUserName1 NewUserName2 NewUserName3 yaddayaddayadda
To delete an Apache user, type in the following and then remove the user from the "httpd.conf" file.
htpasswd -D /usr/local/apache/passwd/wwwpasswd NewUserName
Then restart apache.