WordPress User Roles

WordPress User Roles

Posted 18th September, 2019 by Nadejda

WordPress uses the concept of Roles, keeping your account safe by allowing users to edit your content without using your login while at the same time, allowing you to limit the access given. The site owner can manage the user access to certain tasks such as writing and editing posts, creating pages, categories, editing comments, managing plugins, themes as well as other users.

There are six pre-defined roles: Super Admin, Administrator, Editor, Author, Contributor and Subscriber.

The Super Admin role for example can perform all possible tasks. This role applies to WordPress Multisites. Super admins are in charge of the whole network and make major changes such as adding new sites and deleting old ones. They also manage users, plugins, and themes.

All the other roles have a decreasing number of capabilities which should not be considered as seniority to another role. Rather, the role defines the user’s responsibilities on your website.



The Administrator has full access and can handle all site administration.

They are also the only role which can see Word Ads revenue (the official WordPress advertising program available for site owners).

The Administrator can create more administrators, remove or invite new users, change roles. They have full control over pages, posts, files, settings, comments, themes and other users.

There are no limits to an Administrator’s capabilities including deleting the entire website. This is why it’s recommended that there is only one Administrator per site.



Editors can create, publish, edit and delete any page or post, as well as ones created by other users. They can also manage categories, comments, links and tags.



Authors can manage all content created only by them, as well as upload and publish files. They cannot modify or delete pages, nor posts by other users. They can edit comments on their posts.



Contributors can write and edit their posts but they cannot publish them before being revised by an Administrator. Once the post is approved and published it cannot be edited by the Contributor. They cannot upload files but they can see stats of your site.



Followers have no editing rights; they simply receive notifications when you publish a post. They are however allowed to leave comments.



Viewers are users who can see only private sites and have no editing privileges. All they can do is read the private posts which they were invited to and comment.



They are the same as Followers only in this case the option will be shown only if you have an installed plugin and a Business plan.

As mentioned before, all the above capabilities are pre-defined in WordPress. If you want to create custom ones, you can use a plugin like User Role Editor. With this plugin, you can do very helpful stuff like blocking certain admin menu items per role, manage access per page/post/plugin/theme, etc.

Secure your website’s efficiency by carefully selecting and managing your user roles. Clearly define each one and you will have a well-built and professional team!

Do you have any more questions? Drop a comment bellow and we would love to help!

Categories: Wordpress, Website Security