-
Recent Posts
Recent Comments
Archives
- September 2019
- August 2019
- July 2019
- June 2019
- May 2019
- April 2019
- March 2019
- February 2019
- January 2019
- December 2018
- November 2018
- October 2018
- September 2018
- August 2018
- July 2018
- June 2018
- May 2018
- April 2018
- March 2018
- February 2018
- January 2018
- December 2017
- November 2017
- October 2017
- September 2017
- August 2017
- July 2017
- June 2017
- May 2017
- April 2017
- March 2017
- February 2017
- January 2017
- December 2016
- November 2016
- October 2016
- September 2016
- August 2016
- July 2016
- June 2016
- May 2016
- April 2016
- March 2016
- February 2016
- January 2016
- December 2015
- November 2015
- October 2015
- September 2015
- August 2015
- July 2015
- June 2015
- May 2015
- April 2015
- March 2015
- February 2015
- January 2015
- December 2014
- November 2014
- October 2014
- September 2014
- August 2014
- July 2014
- June 2014
- May 2014
- April 2014
- March 2014
- February 2014
- January 2014
- December 2013
- November 2013
- October 2013
- September 2013
- August 2013
- July 2013
- June 2013
- May 2013
- April 2013
- March 2013
- February 2013
- January 2013
- December 2012
- November 2012
- October 2012
- September 2012
- August 2012
- July 2012
- June 2012
- May 2012
- April 2012
- March 2012
- February 2012
- January 2012
- December 2011
- November 2011
- October 2011
- September 2011
- August 2011
- July 2011
- March 2011
- November 2010
Categories
Meta
Tag Archives: roles
How To Use WordPress User Roles To Improve Security
The post How To Use WordPress User Roles To Improve Security appeared first on HostGator Blog . How To Use WordPress User Roles To Improve Security If you’re just a single person running your site, then you probably haven’t thought twice about WordPress user roles . However, if you ever want to give someone else access to your site, now or into the future, then knowing how to use these is paramount. Essentially, with user roles, you can give people access to certain areas of your site. With this, you only give them access to the portions of the site they require to do their work. Below you’ll learn what WordPress user roles are, why they’re important, and how using them the right way can help to improve your site’s security. What are WordPress User Roles? WordPress is equipped with a role management system that allows you to specify what users can and can’t do on your site. As your site grows knowing how to use these roles is absolutely invaluable. Each role can be specified based on certain capacities. For example, you can give one user the role to publish a post, while you can give another a role to update your plugins and themes. In total there are six default user roles you can use. 1. The Administrator Role You’re probably already familiar with the administrator role . It’s the role you’ve been assigned when you created your site. Usually, there is only one administrator role and it has access to everything related to your site. This role is very powerful and you should rarely give anyone this high-level access to your site. 2. The Super Admin Role There is a user role that’s technically one step higher than the admin role and it’s called the super admin role . The super admin role only applies when you have a network of connected WordPress sites using the WordPress multisite installation. This role is responsible for the entire network of sites and has the same privileges as an admin, but it extends out across the entire network of sites. If you have a super admin role, then the role of the admin is diminished and you can no longer modify or install plugins and themes, or change user information. 3. The Editor Role The editor role has pretty high-level access to your site. This role is responsible for content management, so they’ll be able to do things like creating and edit pages and posts. Along with moderating comments and changing categories. They won’t have access to plugins or themes, but everything related to publishing content is under their jurisdiction. 4. The Author Role The author role is responsible for creating content. They’ll be able to create, edit, and publish posts, but that’s about it. They won’t have access to any pages and will have no level of administrative access. 5. The Contributor Role The contributor role has even less access than the author role. With this role, they’ll be able to read the posts on the site, plus edit and delete their posts. This role doesn’t allow post publishing or the uploading of media files. 6. The Subscriber Role The subscriber role is commonly used for subscription-based sites. Subscribers usually have access to a stripped down WordPress dashboard where they’ll be able to manage their own profiles. This role is useful if you want users to sign up to gain access to certain content. Why User Roles Matter When your site grows and you have multiple people working in the backend of your site, you need a way to manage these users without getting overwhelmed. User roles are important for two reasons: 1. They can simplify your workflow. If you have a developer who maintains your plugins and themes, a team of writers, and an editor you can assign them specific roles based upon the job they’re doing. This will make their jobs easier and prevent them from accessing parts of the site not related to their work. 2. They make your site more secure. By defining user roles you’re giving people access to limited portions of your site. The last thing you want is an untrusted user installing plugins, or themes, or modifying your existing code. How to Use WordPress User Roles to Improve Security By assigning different users roles based upon how they’ll be using your site it’ll help to tighten up your overall security. When you give every single site user an admin role you essentially give them full access to your site. Even though you might trust the person you’re assigning an admin role to there are things that can still compromise the security for your site. For example, they could be using a very weak password . In that case, if the password is hacked then whoever is doing the hacking will have a full range of your site. While, if you’ve assigned them a specified user role the damage the hacker will be able to do is minimal. You also never know if another person’s computer is infected. They might not even know, but their computer could have malware or another virus installed. If you give them admin access, instead of a defined user role, this puts your site at risk. Overall, by specifying user roles you end up improving the security of your site and help to safeguard it against any user errors. Hopefully, you see the advantages of utilizing user roles as your site grows. It’ll not only improve your overall workflow but will improve your security in the process. Find the post on the HostGator Blog Continue reading