How to Set Up FTP Accounts in cPanel (And Restrict Access to Folders)

If you’re managing a website through cPanel and want to provide someone access to specific files without handing over full control, creating an FTP (File Transfer Protocol) account with folder restrictions is the safest and most efficient solution.
In this article, we’ll walk you through what FTP is, how it works, how to create multiple FTP users from your cPanel, and how to ensure each user is limited to only the folder they’re supposed to access  perfect for freelancers, developers, or content uploaders.

What Is FTP and Why Is It Useful?

FTP allows you to transfer files between your computer and the server where your website is hosted. It’s one of the most common ways to upload, download, and manage website content such as themes, images, scripts, and backups.

When you use FTP:

  • You can manage website files without logging into cPanel directly.

  • You can give limited access to different users based on specific folders.

  • It’s faster and more flexible than using the File Manager for bulk uploads or edits.

Step-by-Step: How to Create an FTP Account in cPanel

Step 1: Log In to Your cPanel Account

You can usually access cPanel through:

https://yourdomain.com/cpanel

Use your cPanel username and password provided by your hosting provider.


Step 2: Locate the FTP Accounts Section

Once inside cPanel:

  1. Scroll down to the “Files” section.

  2. Click on “FTP Accounts.”

Step 3: Fill Out the FTP Account Details

You’ll see a form to create a new FTP account. Here’s how to fill it:

  • Login: Choose a username. Example: editor1

  • Domain: Select the domain associated with the FTP user.

  • Password: Use a strong password. Or click Password Generator.

  • Directory: This is the most important field.

Restricting Folder Access:
By default, cPanel auto-fills this with something like /public_html/editor1. You can modify it to any folder path (existing or new).

For example:

  • To limit access to public_html/images/, enter: public_html/images/

  • To allow full website access: leave it as public_html/

  • To allow access to a subdomain like blog.yoursite.com: public_html/blog/

  • Quota (Optional): You can set a disk space limit or choose “Unlimited.”

Click Create FTP Account.

How to Test FTP Access

Once the account is created, use an FTP client like FileZilla, Cyberduck, or WinSCP.

Connection settings:

  • Host: yourdomain.com

  • Username: full FTP username (e.g., editor1@yourdomain.com)

  • Password: as you set

  • Port: 21 (default FTP port)

If everything’s correct, you’ll be connected and only see the folder assigned.

Why Folder Restriction Matters

Let’s say you hire a freelancer to upload content to your WordPress wp-content/uploads directory. Instead of giving full access to your root directory including your wp-config.php and sensitive scripts you can:

  • Set the FTP directory to /public_html/wp-content/uploads

  • Ensure the user can only read/write inside that folder

  • Avoid the risk of accidental deletion or file edits

It’s a simple but effective security practice especially when multiple people work on the same website.

How to Edit or Remove FTP Access Later

Go back to the FTP Accounts section in cPanel. Here, you can:

  • Change the password

  • Change the quota

  • Delete the account (optionally delete their files too)

Tips for Managing FTP Accounts Safely

  • Use secure FTP (SFTP) if your host supports it.

  • Delete old/unused accounts they’re security risks.

  • Avoid giving root access unless necessary.

  • Always back up files before granting write access to others.

Final Thoughts

Setting up FTP accounts via cPanel is easy, and restricting them to specific folders ensures better security and management. Whether you’re managing a single site or multiple projects, properly configured FTP access allows you to collaborate efficiently without compromising sensitive areas of your hosting account.

By keeping control over who accesses what, you can delegate work smartly and safely.