WordPress User and Roles

user rolesDefining the level of access for a new user can be particularly useful for Webmasters and web designers so they can control what users can and cannot do in the WordPress admin (backend). There are different levels of access and capabilities that you can assign for each user.

Outlined below is a guide showing you how to set up a new user in WordPress and how to determine the best role for the new user.

You can add a new user from within the WordPress admin by clicking on ‘Add New’ under the ‘Users’ menu item.

  1. Firstly, enter the user name of the new user, this will also be used as the Login name of the new user.
  2. Enter a valid e-mail address of the new user here. The e-mail address must be unique for each user.
  3. Continue to enter the first and last name of the user.
  4. The website field is not a mandatory field, however you may wish to enter the new user’s website URL here.
  5. You need to enter a password for the new user twice, once in each text box. To ensure the security of your data, passwords should be at least eight characters long and include a combination of upper and lower case letters, numbers and symbols like !”?$%^&). We recommend using 1Password, a secure password management tool that allows you to generate passwords and manage your own login details.
  6. Check the tick box if you would like the login details emailed to the new user for their own filing.
  7. Finally, you need to enter the desired role of the new user from the drop down box. Various roles will limit the permissions of the new user.

New User Role & Capabilities

When you install WordPress, an Administrator account with all capabilities is automatically created. The default role for new users can be updated in the WordPress admin in the ‘General’ settings under the ‘Settings’ menu item.

Super Admin

A Super Admin is usually pertained only to Multisite installations and allows access to control the entire WordPress network administration.

Administrator

Sometimes the capabilities of an Administrator differ for Multisite installations and single site installations and this has been outlined below.

  • activate plugins
  • add users
  • create users
  • delete other users  pages
  • delete other users posts
  • delete pages
  • delete plugins
  • delete posts
  • delete users
  • edit dashboard features
  • edit function files
  • edit others pages
  • edit others posts
  • edit pages
  • edit posts
  • edit theme options
  • edit users
  • export
  • import
  • manage categories
  • manage links
  • manage options
  • moderate comments
  • publish pages
  • publish posts
  • read private pages
  • read private posts
  • remove users
  • switch themes
  • upload files

The following capabilities are specific to an Administrator’s role for single site installations:

  • update core installation
  • update plugins
  • update themes
  • install plugins
  • install themes
  • delete themes
  • edit plugins
  • edit themes

Editor

An Editor has the ability to publish and manage posts and pages as well as manage other users’ posts, etc. The specifics are outlined below:

  • delete other users pages
  • delete other users posts
  • delete pages
  • delete posts
  • edit other users pages
  • edit others posts
  • edit pages
  • edit posts
  • manage categories
  • manage links
  • moderate comments
  • publish pages
  • publish posts
  • unfiltered html (not with Multisite. See Unfiltered MU)
  • upload files

Author

  • delete posts
  • edit posts
  • edit published posts
  • publish posts
  • read
  • upload files
Contributor
  • delete posts
  • edit posts
  • read
Subscriber
  • read

Site Footer