Pivotlar uses dedicated Linux system users to isolate and secure each WordPress site at the operating system level. This approach ensures every site runs in its own environment with restricted access, separate permissions, and clearer visibility.
This guide explains:
- Why system users are important
- How to create and manage users in your Pivotlar dashboard
- How SSH/SFTP access works
- Best practices for user isolation
- How to safely delete a system user
Why System Users Matter #
Each WordPress site in Pivotlar is run under a Linux system user. By default, this is the pivotlar user, unless you assign a custom one during provisioning.
This user-based model provides key advantages:
Security Isolation #
Users are jailed (chrooted), meaning each site can only access its own files and environment — no cross-site contamination.
Controlled Access #
You can provide developers or clients access to just their site using system-level permissions, without exposing the full server.
Resource Monitoring #
System-level tracking allows you to monitor CPU, memory, and I/O usage per site using tools like htop or Pivotlar’s internal metrics.
Can I Use the Same User for Multiple Sites? #
Yes — Pivotlar supports assigning multiple sites to a single system user when needed.
This may be appropriate for:
- Development/staging clusters
- Multi-site projects managed by one team
However, we strongly recommend assigning a separate user to each site to preserve isolation and simplify access management.
⚠️ Best Practice: Stick to one user per site for better security, performance visibility, and access control.
Creating a System User #
To manually create a user before assigning it to a site:
- Navigate to System Users
- Click Add System User
You’ll be asked to provide:
- Username – must be Linux-safe (lowercase, no spaces)
- Server – choose the server this user will belong to
- Password – required unless an SSH key is used
- SSH Public Key
Once created, the user will appear in the list and can be selected during site creation. That user will now be able to connect to the server via SFTP or SSH.
Access Types: SFTP & SSH #
Pivotlar supports flexible access modes per system user:
SFTP Access #
Perfect for clients and site managers. Connect with tools like FileZilla, Transmit, or Cyberduck to upload/download files.
SSH Access #
Intended for developers needing terminal access to manage files, run WP-CLI, etc. Access is jailed for security.
Deleting a System User #
If a system user is no longer needed, you can delete it — but only after all sites assigned to it are reassigned.
To delete a user: #
- Go to System Users
- Ensure the user has no active sites (reassign them first if needed)
- Click the Delete button next to the user
⚠️ You will not be able to delete a user who still owns active sites. Reassigning site is required before deletion.
Summary #
- Deleting a user requires that no sites are assigned to them
- Pivotlar uses per-site Linux system users to ensure isolation, control, and visibility
- Each user can have SFTP and SSH access
- Multiple sites can share a user, but one site per user is best practice
- Users can be created, managed, or deleted from the System Users page
Need Help? #
Reach out to our support team via support@pivotlar.com
