How to Give Someone Access to Your WordPress Multi-site

Table of Contents

• • Introduction
  • Step 1: First Confirm If You Have Single Site or Multisite
  • Step 2: Decide What Access You Want to Give
  • Step 3: Never Share Your Main Admin Login
  • Step 4: Add a New User in WordPress Single Site
  • Step 5: Change User Role Anytime
  • Step 6: Remove User Access Safely on Single Site
  • Step 7: Add a User in WordPress Multisite
  • Step 8: Grant Super Admin in Multisite Only If Needed
  • Step 9: Remove Super Admin Access When Work Ends
  • Step 10: Best Practices to Keep Access Safe
  • Final Summary

Introduction

Giving someone access to your WordPress website is common. You may need help from a developer, editor, or support team. Many website owners share their own admin login quickly. That looks easy, but it is not safe. It also creates confusion later. You cannot track what changed and who did it. The best method is always creating a new user account. Then you assign the right role for the work. This keeps your site secure and your control clear.

WordPress works in two common setups. The first is a normal single WordPress site. The second is WordPress Multisite, where one dashboard runs many sites. The user access steps are similar, but Multisite adds one special role. That role is called Super Admin. A Super Admin controls the whole network, not just one site. This guide explains both setups in simple steps. It also helps you choose the right access level and remove access later.

Step 1: First Confirm If You Have Single Site or Multisite

Before you add any user, check your setup. You do not need technical knowledge for this. Just look at your WordPress admin top bar after login.

How to check

• Log in to your WordPress dashboard.
• Look at the top black admin bar.
• If you see My Sites, you may have Multisite.
• Hover on My Sites and look for Network Admin.

If you see Network Admin, your site is Multisite. If you do not see it, your site is usually a single WordPress site. This one check prevents wrong steps later. It also helps you pick the correct role.

Step 2: Decide What Access You Want to Give

This step is very important for safety. Not everyone needs full control. Many tasks can be done with limited access. When you give too much access, you increase risk. When you give too little access, work gets stuck. So you should pick the role based on the job.

A simple role guide for most website owners

Subscriber

• Best for basic member login only.
• They can read content after login.
• They cannot edit anything on the site.

Contributor

• Best for guest writers and authors.
• They can write posts but cannot publish them.
• An editor or admin must review and publish.

Author

• Best for writers who publish their own posts.
• They can publish and edit their own posts.
• They cannot manage pages or site settings.

Editor

• Best for content managers and blog teams.
• They can edit and publish posts and pages.
• They can also manage other authors’ content.

Administrator

• Best for trusted developers on one website.
• They can install plugins and change settings.
• They can manage users on that single site.

Quick rule you should follow

• Content work only → give Editor or Author.
• Design and plugin setup → give Administrator.
• Full Multisite control → give Super Admin only.

If you feel confused, start with Editor. Then upgrade later if required. Upgrading is easy. Fixing damage from too much access is harder.

Step 3: Never Share Your Main Admin Login

This is the most important safety rule. Your main login should stay private. A shared login creates many issues.

Problems with sharing your login

• You cannot track changes correctly.
• You cannot prove who did what later.
• Password sharing can leak outside your team.
• One mistake can break your whole site quickly.
• You cannot remove access without changing your password.

Instead, always create a new user for each person. Even if it is a short job, create a user. You can delete it later.

Step 4: Add a New User in WordPress Single Site

Use this method if your WordPress is not Multisite. This is the common setup for most websites.

Step-by-step: Add New User

Follow these steps from your dashboard.

Navigation path

• Dashboard → Users → Add New

What to fill

• Username: Use a clear name, not “admin”.
• Email: Use their correct working email address.
• First Name / Last Name: Optional, but helpful.
• Website: You can leave this blank.
• Password: WordPress can generate a strong one.
• Role: Choose Editor, Author, or Administrator.

Now click Add New User.

Recommended way to send login details

If WordPress offers “Send the new user an email,” keep it enabled. The user will get a setup email. They can set their password and log in. If emails fail on your site, use the manual option below.

If the user did not receive an email

Email issues are common on some hosting plans. Do not worry. You can still give access.

Manual password method

• Dashboard → Users → All Users
• Find the user and click Edit
• Scroll to Account Management
• Click Set New Password
• Copy the password and share securely

Share it only in a safe way. Avoid sending passwords in open chat groups. If possible, ask them to reset it after login.

Step 5: Change User Role Anytime

Many website owners start with one role and later need another. WordPress makes this easy. You can upgrade or downgrade access in seconds.

Steps

• Dashboard → Users → All Users
• Find the user
• Change their role from the role dropdown
• Click Change or Update

This is helpful when a developer finishes work. You can downgrade them to Editor. Or you can remove access completely.

Step 6: Remove User Access Safely on Single Site

When work is done, you should remove access. This keeps your site secure long term.

Option A: Downgrade access

Downgrading keeps the account but limits power.

Example

• Change Administrator to Editor.
• Change Editor to Author or Contributor.

This is best for long-term team members. It is also good when support ends but content work continues.

Option B: Delete the user

Delete if you no longer need the account.

Steps

• Dashboard → Users → All Users
• Hover user → click Delete

WordPress may ask what to do with their content. Choose carefully.

Best choice

• Reassign posts to another user.
  This keeps your content safe and clean.

Step 7: Add a User in WordPress Multisite

If you use Multisite, user handling has two levels. One is the network level. The other is the site level. This is where many people get confused. A user can exist in the network, but still not have access to a site. So you must follow the right order.

Part A: Add user at the Network level

Navigation path

• Top bar → My Sites → Network Admin → Users

Then click Add New.

Fill details

• Username
• Email
• Click Add User

Now the user exists in the network. But they may not yet have access to a specific site. That depends on how your network is configured.

Part B: Add user to a specific site

If you want the person to work on one site only, add them to that site.

Steps

• Go to the site dashboard you want
• Dashboard → Users → Add New
• Add existing user by email or username
• Choose role like Editor or Administrator
• Click Add Existing User

Now they can work on that site only. They still do not have network control. This is the safer approach for most cases.

Step 8: Grant Super Admin in Multisite Only If Needed

Super Admin is the highest role in Multisite. This person can control the entire network. They can manage all sites, plugins, themes, and settings. You should only give this role to trusted people. In most cases, a developer does not need Super Admin. They only need Administrator on one site.

When Super Admin makes sense

• The person must manage multiple sites regularly.
• They need to install network plugins and themes.
• They must change network settings and structure.
• They must create or remove sites in the network.

Step-by-step: Grant Super Admin

Steps

• My Sites → Network Admin → Users
• Find the user and click Edit
• Check Grant this user super admin privileges
• Click Update User

After saving, ask the user to log out and log in again. Then they should see Network Admin options.

Step 9: Remove Super Admin Access When Work Ends

Temporary Super Admin access is a smart practice. Remove it as soon as the network task is done.

Steps

• My Sites → Network Admin → Users
• Find the user and click Edit
• Uncheck Super Admin privileges
• Click Update User

If you also want to remove site access, remove them from the site too. Or delete their network user if needed.

Step 10: Best Practices to Keep Access Safe

These tips keep your site safe without making things hard.

1) Use the lowest role possible

Give only what the job needs. Editors do not need Admin. Developers do not always need Super Admin. Lower access reduces mistakes and risk.

2) Keep your Admin list small

Too many admins create long-term risk. Review your users every month. Remove accounts that are no longer needed.

3) Use strong passwords

Weak passwords are a common reason for hacking. Use strong passwords for every admin account. Use a password manager if possible.

4) Enable two-factor login if possible

2FA adds a second step to login. It blocks most password attacks. If you can enable it, do it for Admin and Super Admin.

5) Avoid generic usernames

Avoid usernames like admin, wpadmin, support, or test. Use names that identify the person. This improves tracking.

6) Create separate accounts for each person

Never let two people share one account. Separate accounts improve security and control. They also help when you remove access.

7) Always remove access after the task

This is the habit that protects your site long term. If a freelancer job ends, remove access that same day.

Final Summary

To give someone access to your WordPress site, always create a new user. Then assign the correct role based on the work. For a single WordPress site, use Users → Add New and choose a role like Editor or Administrator. For WordPress Multisite, add the user at Network Admin first. Then add them to a site if needed. Only grant Super Admin when the person must control the full network. After work is done, downgrade or remove access to keep your website safe and clean.

Need Help Managing Access or Roles in WordPress?
Let our experts at WooHelpDesk handle it for you! Whether you’re adding a new user, assigning the right role, or managing Multisite permissions — we’ve got your back. Get Professional WordPress Help Now