How to Restrict Dashboard access to users in WordPress?

When you allow user registration on your WordPress site, you also give access to your WordPress dashboard. Normally, users are automatically redirected to the Dashboard after completing the registration process. Have you thought about restricting registered users from accessing the WordPress Dashboard? . In this article, we will show you how to restrict Dashboard Access to users in WordPress.

Why Restrict Dashboard Access ?

When you enable user registration on your WordPress blog, you control what user see and cannot see on the dashboard by setting different roles.  However, it’s still considered best to give dashboard access only to trusted users. For example- If you are running a multi-author blog, then you may want to give Dashboard access to editors and contributors but not to subscribers.

How to Restrict Dashboard Access in WordPress?

• First of all, you will have to install Remove Dashboard Access plugin. To do this, navigate to Plugins>>Add New. In search box, type  “Remove Dashboard Access” and click on search plugins button. WordPress will show you the search result and you will find this plugin at the top.
• Just click on “Install Now” button. See below given screenshot:

• After installing the plugin, you need to activate it. To do that, click on “Activate Plugin” link. See below given screenshot:

• Now navigate to Plugins>>Installed Plugin .  Click on “Settings”  link of “Remove Dashboard Access” plugin. You will see different options. The screenshot of the same is shown below:

Remove Dashboard Access plugin allows you to choose users with specific capability that can get access to the dashboard. You can choose either Administrators, “Editors and Administrators” or “Authors, Editors and Administrators” for this option. Additionally, you can also limit the access further by setting Roles & Capabilities options.

The next option allows you to choose a redirect URL. Using this option, you can redirect disallowed users to any specific webpage.

If you want to allow users to edit their profiles, you can check the box next to “User Profile Access“. Please note that selecting this option will disable the URL redirection feature. It means, you won’t be able to restrict users from accessing the dashboard.

The last option allows you to enter any Custom Login Message. If this field is left blank, this option will not work.

Once you are satisfied with your settings, Click on Save Changes button to save the settings. That’s all. Now your WordPress dashboard will be accessible only to users having roles or capablilities allowed by you.
If you want to hide some options for your users in WordPress Admin Dashboard, install Adminize Plugin.

Password Protecting the WordPress Admin Directory

If you want to add additional security to your WordPress blog, you can password protect the WordPress Admin directory. To do this, follow below given procedure:

• Login into your cPanel Account
• In security category, click on “Password Protect Directories“. If you have more than one domain, select the one where you want to set a password .See below given screenshot:

• Choose wp-admin folder because we are trying to set password in this directory. See the screenshot:

• Check the check box next to “Password Protect this Directory” and enter the name of the protected directory.Once done, click on Save button. For example- I have named the directory as “Geteverything.org Admins Only” for this example.

• Next step is to create a Username and password. Only this user will be allowed to access the files of wp-admin. To do this, use the form which is shown in above image. Choose a strong password.
• Once done, click on “Add/ Modify authorized user” button
• That’s it. Now your wp-admin directory is password protected. No one except you would be able to open it.

If you have any questions or queries, feel free to ask me through comments.