Skip to content

Lock customers out of the WordPress dashboard

Customers have no business in wp-admin — redirect them to My Account (or a 404) while your team keeps full access.

  • Redirect non-staff
  • Admins + chosen roles exempt
  • AJAX/REST unaffected
No credit card required
FreeAdmin & operations

Letting customers reach /wp-admin is confusing and a support risk. Admin Dashboard Access redirects unauthorized users away from the dashboard — to My Account or a 404 — while administrators (always) and any roles you allow keep access. Crucially, AJAX, REST, and cron are never blocked, so the store keeps working. This recipe locks it down.

What you get
  • Customers visiting /wp-admin are redirected away.
  • Administrators always keep dashboard access.
  • Add staff roles (e.g. Shop Manager) to the allow-list.
  • Background jobs and the storefront keep working.
Copy these settings

The exact configuration

Enter these values and you have the setup live. Every field maps to a real ArraySubs setting.

SettingValue
Restrict wp-admin accessSettings → Toolkit → Admin Dashboard AccessOn (default Off)
Redirect unauthorized users toAdmin Dashboard AccessWooCommerce My Account (default) or 404
Allowed rolesAdmin Dashboard AccessAdd roles (e.g. Shop Manager); additive to admins
Never blockedBehaviourAdmins · AJAX · REST API · WP-Cron · Action Scheduler
Best for

When to use this setup

Membership and customer portals
Keeping non-staff out of the back office
Reducing accidental admin access
Set up

Set it up in 3 steps

A step-by-step guide drawn from the ArraySubs user manual. Open the linked page for the full walkthrough and screenshots.

  1. Open Admin Dashboard Access

    Go to ArraySubs → Settings → Toolkit → Admin Dashboard Access.

    Admin Dashboard Access
  2. Restrict and choose a redirect

    Turn on Restrict wp-admin access and set the redirect to WooCommerce My Account (recommended) or a 404.

    Admin Dashboard Access
  3. Allow your staff roles

    Add roles like Shop Manager to Allowed roles — administrators are always allowed and don’t need adding.

    Admin Dashboard Access
From the manual

This recipe is built from these ArraySubs user-manual guides:

Good to know

Notes & edge cases

Allowed roles is additive on top of the always-on Administrator exemption.
AJAX, REST API, WP-Cron, and Action Scheduler are never blocked — only direct browser visits are redirected.
Pair with Hide Admin Bar and WordPress Login Page for a fully customer-facing experience.
Built with

Modules behind this recipe

The ArraySubs modules this setup relies on.

Free

Admin Dashboard Access

Redirect unauthorized customers away from wp-admin while preserving access for administrators and selected roles.

Free + Pro

Manage Subscriptions

The central admin hub for viewing, creating, editing, exporting, and managing every subscription record.

FAQ

Questions, answered

No. The restriction only redirects direct browser visits to admin pages. AJAX, REST, WP-Cron, and Action Scheduler are never blocked.

Yes. Administrators are always exempt, and you can add other roles (e.g. Shop Manager) to the Allowed roles list.
Paid Pro plans

Unlock the complete Pro stack

Start on the free-forever core today, then choose a paid Pro plan when you need the advanced Pro feature set.

No credit card required · Annual and lifetime options available