The iThemes Security Pro plugin already helps you protect your WordPress website with user-level security checks and user logging. Its developers just introduced a new User Groups feature, which allows you to enforce the right security level for the right people.
Basically, you can create a group of all people who can make changes to your site and grant them the power to make changes to the security settings. However, any user who can make changes to your site becomes a security risk if their account ends up in the wrong people’ hands. That’s why these groups have to secure their account with two-factor authentication (2FA).
There are two ways of creating user groups:
- Use the existing WordPress User Roles of your site, e.g. Administrator, Editor, and Author
- Choose specific WordPress users and add them to groups
iThemes Security Pro kind of takes the decision for you anyway. The plugin will automatically create groups from your existing WP user roles. In addition to 2FA you can enable Passwordless Logins, Trusted Devices, and more on a per group level
Sound good? Get your hands on either iThemes Security Pro, the Plugin Suite or the Toolkit.