Documentation
Fundamentals
- Installation
- Introduction to the AAM UI
- Unpacking the structure of AAM functionality
- Overview of strategic thinking about WordPress access
- AAM Non-negotiable rules
- Understanding the access controls inheritance mechanism
- AAM compatibility with other plugins or themes
- Resolving access control ambiguity in WordPress
Security Audit Service
- What is AAM security audit and how it works
- The importance of preserving WordPress core roles and capabilities to avoid conflicts
- A critical integrity and security warning for altering the structure of the WordPress core option _user_roles
- Security concerns with high-privilege WordPress roles in content moderation
- The importance of following WordPress core naming conventions for roles and capabilities
- Security risks of having too many Administrator and Editor accounts on a WordPress site
- The hidden perils of invisible WordPress roles and why they can cause trouble for website access management
- Beware of registered empty roles on a WordPress website
- Misuse of high-privilege WordPress capabilities
- Security risks of elevated user access and multiple high-privilege accounts in WordPress
- The danger of altering default WordPress core roles
- The importance of protecting the WordPress RESTful API auto-discover endpoint
- The importance of disabling the WordPress XML-RPC endpoint for website security
- The security implications of not having a read-only WordPress file system
Users, Roles & Capabilities
Backend Access
Restricted Content
Protected Files
Redirects
Other Goodies
- Understanding complexity behind password protecting the whole WordPress website
- Underestimated aspect of API access controls
- Unlocking multilingual content access management with WPML
- Strengthening WordPress login security with AAM
- Securing WordPress RESTful API endpoints
- Managing JWT tokens for WordPress
- Managing access to the WordPress website URLs
- How to manage access to the website based on user's IP address or geo location
References
Plugin Reference
Complete list of all AAM custom capabilities, configurations and settings with detailed description.
Open ReferenceJSON Access Policy
Educational and reference material for the enterprise level access management with AAM JSON access policies.
Open ReferenceRESTful API
The complete list of all documented RESTful API endpoints that allow to work with AAM functionality.
Open ReferenceFAQs & How to's
Ask a question
Can't find the answer to your question?
Please do not hesitate to contact us directly if you have any questions or feedback.