ww.wp.xz.cn
Get WordPress
ww.wp.xz.cn

Plugin Directory

Advanced Access Manager – Access Governance for WordPress

Advanced Access Manager – Access Governance for WordPress

By AAM Plugin
Download

Description

Advanced Access Manager (AAM) introduces Access Governance for WordPress – a systematic approach to securing your site by controlling who can access what, when, and why.

Most WordPress security plugins focus on external threats like malware, firewalls, and brute-force attacks. AAM addresses the root cause of the #1 WordPress security risk: broken access controls, excessive privileges, and misconfigured roles.

Instead of reacting to attacks, AAM helps you design security into your WordPress site.

What Access Governance means in practice

  • Mitigate Broken Access Controls. Ensure roles, users, and permissions are correctly configured to prevent unauthorized actions and privilege escalation.
  • Eliminate Excessive Privileges. Identify overpowered users and reduce access to critical functionality, admin areas, and APIs.
  • Secure Content by Design. Control who can view, edit, publish, or delete posts, pages, media, taxonomies, and custom content types.
  • Govern Access with Policy. Define access rules using JSON Access Policies — portable, auditable, and automation-friendly.
  • Build Custom Security Logic. Use the AAM PHP Framework to create advanced, programmatic access controls tailored to your application.

Key Features

  • Security Audit. Detect risky role assignments, misconfigurations, and compromised accounts.
  • Granular Access Control. Manage permissions for any user, role, or visitor with precision.
  • Role & Capability Management. Customize WordPress roles and capabilities beyond defaults.
  • Admin & Menu Control. Restrict dashboard areas and tailor the admin experience per user or role.
  • API & Endpoint Protection. Secure REST and XML-RPC access with fine-grained controls.
  • Modern Authentication Options. Support passwordless and secure login flows.
  • Developer-Ready Framework. Extend WordPress security using AAM’s powerful SDK.
  • Ad-Free & Transparent. – No ads, no tracking, no bloat.

Built for Security-Conscious WordPress Users

AAM is trusted by 150,000+ websites to deliver enterprise-grade access control without unnecessary complexity. Whether you’re a site owner, agency, developer, or security professional, AAM gives you full control over WordPress access — by design.

Most core features are free. Advanced capabilities are available via premium add-ons.

No hidden tracking. No data collection. No unwanted changes.
Just security you can reason about, audit, and trust.

Screenshots

Manage access to backend menu
Manage access to backend menu
Manage access to metaboxes & widgets
Manage access to metaboxes & widgets
Manage capabilities for roles and users
Manage capabilities for roles and users
Manage access to posts, pages, media or custom post types
Manage access to posts, pages, media or custom post types
Posts and pages access options form
Posts and pages access options form
Define access to posts and categories while editing them
Define access to posts and categories while editing them
Manage access denied redirect rule
Manage access denied redirect rule
Manage user login redirect
Manage user login redirect
Manage 404 redirect
Manage 404 redirect
Create your own content teaser for limited content
Create your own content teaser for limited content
Improve your website security
Improve your website security

Installation

  1. Upload advanced-access-manager folder to the /wp-content/plugins/ directory
  2. Activate the plugin through the ‘Plugins’ menu in WordPress

Reviews

Best in class

January 17, 2025
I have been looking for a plugin to manage user access and AAM is by far the best of all. Highly recommended.

This is an incredible plugin

September 11, 2024
This plugin is the best out there. I use it every time I have a client that needs to have access to the backend. I can easily make changes to permissions for every user role. 10 stars guys

Doesn’t find all Plugin Toolbars

June 10, 2024 2 replies
When we started using this plugin a year or so ago it was good. But now it conflicts with many other plugins and misses out plugins like WPCode. It actually locked me out of the plugin as an administrator, so I had to uninstall AAM.It is a shame because it was once a great plugin.

Metaboxes and Gutenberg

March 18, 2024
I am looking to hide “metaboxes” in Gutenberg editors, but as far as I understand in the “Metaboxes and Widgets”, in the “Articles” section, when I click hide (Comments, Slug…) .it does nothing.Does it only work in classic editor ?

Awesome Plugin with Great Support

February 29, 2024
Very comprehensive plugin that was able to do a lot of the things that I needed (especially in comparison to other ones out there when it comes to access management). Support was prompt, professional and very helpful and actually went above and beyond to help me out even after I had misunderstood some of the terms and conditions. They really know their stuff when it comes to WP so you are in good hands!
Read all 421 reviews

Contributors & Developers

“Advanced Access Manager – Access Governance for WordPress” is open source software. The following people have contributed to this plugin.

Contributors

“Advanced Access Manager – Access Governance for WordPress” has been translated into 7 locales. Thank you to the translators for their contributions.

Translate “Advanced Access Manager – Access Governance for WordPress” into your language.

Interested in development?

Browse the code, check out the SVN repository, or subscribe to the development log by RSS.

Changelog

7.1.2

7.1.1

7.1.0

7.0.11

7.0.10

7.0.9

7.0.8

7.0.7

7.0.6

7.0.5

7.0.4

7.0.3

7.0.2

7.0.1

7.0.0

  • Official 7.0.0

6.9.51

6.0.0

  • Complete rewrite of the entire plugin. For more information, check this article

5.0

  • Added ACCESS COUNTER option to Posts & Pages
  • Added premium MONETIZE option to Posts & Pages
  • Added ability to turn off “Secure Login” feature
  • Added ability to toggle extension status (active/inactive)
  • Added ability for AAM to filter out Admin Top Bar based on restricted admin menus
  • Deprecated AAM Role Filter extension and merged it to the AAM core
  • Deprecated AAM Payment extension and merged it with AAM E-Commerce extension
  • Deprecated ConfigPress options that manage access to AAM UI. All is based on capabilities from now.
  • Split UI to three areas: Access, Settings and Extensions
  • Fixed over 25+ reported bugs and discovered during internal refactoring
  • Removed deprecated “Security” feature. Replaced with Secure Login Widget
  • Removed deprecated “Teaser” feature. Replaced with Teaser Message per post base

4.0

  • Added link Access to category list
  • Added shortcode [aam] to manage access to the post’s content
  • Moved AAM Redirect extension to the basic AAM package
  • Moved AAM Login Redirect extension to the basic AAM package
  • Moved AAM Content Teaser extension to the basic AAM package
  • Set single password for any post or posts in any category or post type
  • Added two protection mechanism from login brute force attacks
  • Added double authentication mechanism
  • Few minor core bug fixings
  • Improved multisite support
  • Improved caching mechanism

3.0

  • Brand new and much more intuitive user interface
  • Fully responsive design
  • Better, more reliable and faster core functionality
  • Completely new extension handler
  • Added “Manage Access” action to the list of user
  • Tested against WP 3.8 and PHP 5.2.17 versions

2.0

  • New UI
  • Robust and completely new core functionality
  • Over 3 dozen of bug fixed and improvement during 3 alpha & beta versions
  • Improved Update mechanism

1.0

  • Fixed issue with comment editing
  • Implemented JavaScript error catching

Meta

Ratings

4.2 out of 5 stars.

Your review

See all reviews

Contributors

Support

Issues resolved in last two months:

0 out of 2

View support forum