Documentation Index

Fetch the complete documentation index at: https://supporthub.usheru.com/llms.txt

Use this file to discover all available pages before exploring further.

How To Manage User Access And Permissions

  • Published on Mar 9, 2026
  • 2 minute(s) read
  • R
 Prev Next

Introduction

Managing user access effectively is one of the most important aspects of maintaining a secure and organized WordPress website. This guide will walk you through how to add new users, understand the different roles available, and update permissions as your team grows.

Understanding WordPress User Roles

WordPress assigns specific capabilities to different roles. Choosing the right one ensures that users have exactly the access they need without risking the site’s technical settings.

  • Administrator: This is the highest level of access. Administrators can add or delete users, change themes, install plugins, and edit any content on the site. This role should be reserved for site owners or lead developers.

  • Editor: Editors can view, edit, publish, and delete any posts or pages, including those written by other users. They can also moderate comments and manage categories.

  • Author: Authors can write, upload media, and publish their own posts, but they cannot edit or delete posts created by others.

  • Contributor: Contributors can write and edit their own posts but cannot publish them. An Editor or Administrator must review and publish their work.

  • Subscriber: This is the default role for new registrations. Subscribers can only manage their own profile and have no access to the site’s backend settings or content creation.

Steps

How to add a new user:

  1. Log in to your WordPress Dashboard.

  2. Navigate to the Users menu on the left sidebar and click Add User.

  3. Fill in the Username and Email (both are required).

  4. Enter the user's first and last name.

  5. Password: WordPress will automatically generate a strong password. You can click "Show password" to see it, or the user can reset it themselves via the notification email.

  6. Send User Notification: Ensure the "Send the new user an email about their account" box is checked.

  7. Role: Select the appropriate role from the dropdown menu based on the definitions in Section 1.

  8. Click Add New User.


Managing Existing Users and Permissions

You can update a user’s role or remove access at any time.

  1. To update a role go to Users > All Users, hover over their name, and click Edit. Scroll down to the Role dropdown, select the new permission level, and click Update User.

  1. To delete a user, go to Users > All Users and click Delete under their name. WordPress will ask what you want to do with their content. Important: Always select "Attribute all content to" and choose an active account (like your own) so their posts and pages don't disappear from the site.

Summary

Managing user access in WordPress is essential for keeping a website secure and well-organized. WordPress provides several user roles—Administrator, Editor, Author, Contributor, and Subscriber—each with different levels of permissions that control what users can view, edit, or manage on the site. Administrators have full control, while other roles provide more limited access depending on responsibilities. New users can be added through the dashboard by entering their details, assigning an appropriate role, and sending them login credentials. Site owners can also update user roles or remove users at any time through the Users section, ensuring that access levels remain appropriate as the team changes. Properly managing roles and permissions helps protect the website while allowing team members to perform their tasks efficiently.

Related articles

© All rights reserved