Setting up clients credentials for WordPress site

Unless you’re going to manage all of that in the future, either get the client to do it and send you the details, or set up a new email that the client can access too and register everything there.

I’ve worked at places that use internal keys and API credentials for things in the past, and it’s a very bad idea. One site goes over the allowance, everyone else’s sites stop working and it’s all a big mess.

Thank you cat.
I thought that was what I should do, but sometimes we can’t see something right in front of us.
Thanks again.

• This reply was modified 7 years, 3 months ago by pbusacco.

For Google services, we always create a new Gmail account and share the credentials with the client. If it’s a one-off project, one of our sign-off routines is to require the client to change the password… so that we have plausible deniability regarding access to the account.

This way, we have full access to manage everything ourselves.

We basically got tired of waiting for clients to make changes or grant permissions that can only be done by logging to the actual account — even for new accounts that they created and control. Sometimes the client doesn’t even know how to handle our requests!

We also never want to access clients’ primary email accounts for liability reasons (for our managed IT services division, we have a strong Business Associate Agreement in place so that’s no concern there).

Some internet marketing gurus preach setting up everything under your own accounts that you never share with the client. This way you can basically build what they call “online assets” that you can take elsewhere if the first client gets tired of paying your hefty management fees. I find this totally unethical, if not illegal in some circumstances.