Introduction To The Security Admin System
Shield is the only WordPress security plugin with a WordPress-independent security PIN to protect itself. It achieves this through its own Security Admin system.
What is the Security Admin System?
This is a critical component to the WordPress Shield Security plugin that provides an additional security layer to the normal WordPress admin.
It's accessible from within the main Security Zones menu > Security Admin. (see screenshot below)
Access to the Security Admin system
What does Security Admin do?
The Security Admin protects the Shield Security plugin against tampering or accidental changes by other WordPress admins.
It will lock down access to the settings of the plugin to only those admins that know the Security Admin PIN.
When Security Admin Access Restriction is active:
- No WordPress Shield Security options may be viewable from the WordPress admin dashboard
- No WordPress Shield Security options may be configured from the WordPress admin dashboard
- The WordPress Shield Security plugin may not be deactivated or un-installed
It can also prevent similar tampering or accidental changes to core WordPress settings, such as the site URL, permalinks, default user role, etc.
Perhaps one of its most powerful features is how it will prevent other admins from tampering with other admin accounts.
These options may be enabled/disabled according to your preferences.
For more background on the Security Admin system, read our blog article here.