Blocking Admin from Accessing Other Admins

More info …

I realize that any Admin has full rights to update and modify a website. What I’m thinking of is of some type of “door lock” that can be implemented for each individual Admin such that other Admins’ login credentials cannot be modified or deleted.

As a minimum, implement some type of “door lock” or restriction that will prevent access to the website’s Primary Admin (website owner’s) login credentials.

Hope this makes sense to you.

Thank you!

Thanks for reaching out.

You are correct in that an admin generally can do anything, including seeing other admin’s user profiles. With a multisite installation you have a little more protection as site admins can’t access the super admin section or credentials, but a standard WordPress installation doesn’t have that protection.

What I think might be a closer fit to what you want to do would be to use a User Role plugin. There are several available. I can’t recommend one over the others but I think there are free and paid options out there. They allow you to select what tasks and capabilities user levels have and support custom roles IIRC. I’d suggest creating a role, Administrator 2 for example, and assign all the capabilities you want them to have, but restrict access to editing Administrator profiles. I’m not 100% sure if that can be done but I’m betting you aren’t the first person that ever needed it. One of them, Ultimate Member, has options to set which user roles a user can edit or delete so I’m sure others have that too.

Please note : We have no affiliation with the Ultimate Member team and are not endorsing it. This is just an example to help you know what you are looking for.

I hope this helps.
Tim

• This reply was modified 2 years, 10 months ago by WFSupport. Reason: clarity