Skip to content

Restricting site access

Restricting access via authentication

Access to applications and environments can be partially or fully restricted.

Full site restriction

To restrict access to authenticated users only, WordPress plugins that support this functionality can be used, such as Force Login or Registered Users Only. If an organization has a Single Sign On (SSO) system, the login process for a team can be simplified by integrating it into the login flow.

What is restricted

  • Once enabled, logged out users would be required to login and verify permissions before being able to access the site.
  • Note that the restrictions will only apply to content that is generated by WordPress. Media and static assets will continue to be publicly accessible.
  • Content will also continue to be syndicated via Jetpack’s content distribution tools. To change this behavior, refer to Controlling Content Distribution via Jetpack.

Temporary restriction

To temporarily restrict access to a site (e.g. when the site is under development or for pre-launch configuration) the Maintenance Mode plugin can be used.

What is restricted

  • After installing and configuring the plugin, only users with Author-level access and above can access the site.
  • The access restrictions will only apply to content that is generated by WordPress. Media and static assets will continue to be publicly accessible.
  • Content will also continue to be syndicated via Jetpack’s content distribution tools. To change this behavior, refer to Controlling Content Distribution via Jetpack.

Last updated: March 11, 2022