User Role - Restrict access to specific Settings
Ability to customise user roles to restrict some access in Xero.
Purpose: Some staff should only have limited access in Xero.
Hi everyone, we appreciate all your feedback on how we could evolve roles for customers using Xero. As you can see through the ideas on the platform, there are a wide range of combinations of permissions our customers want to see us build. As user roles impact all areas of the product, there are many considerations we must factor in when assessing how to solve for majority of our customers needs.
We’re beginning to conduct research on the current landscape and how we might approach some of the most predominant needs in roles for our customers. Front footing this, the discovery of this work will be long winded and there will be multiple phases of research and forms of engagement with users that’ll help shape the path ahead in this space.
We’d like to invite you, our community to be part of this research and discovery. This may involve interviews and sharing further feedback through direct surveys or questionnaires.
✍️ If this is something you’d be interested in taking a part of please fill in our short form here.
Though we won’t be able to invite everyone into every stage, our research team will be in touch with many of you over the coming months.
We will be back to share on the outcomes of our research and any progress around development of roles in Xero.
-
Cindy Rahal commented
I have hired staff to take care of reconciliation and general book-keeping. I really don't want them to have access to the company bank account balance. This is ludicrous. Seriously considering changing to a different system unless xero fixes this.
-
Salim Sukari commented
If you hire overseas staff to perform specific duties, then it is very important that they have their access restricted to certain functions.
The Draft user role does not allow them to work as part of a team, as they can only see draft repeating bills they create. Repeating draft bills can be worked on from anyone for submissions and approval.
-
Charles Baker commented
Would like the ability to restrict user access to viewing bank account balances via bank accounts tab or dashboard. Not all users need access to this information. Draft user role is too limited for practicality.
-
Lori Grogan commented
So this was suggested in 2014 and nothing done?
-
Lawrence Stanley commented
How much would it cost to get this feature added?
-
Christine Vaughan commented
Just ability to upload files both in Xero and through the app would be really useful
-
Brendan Watt commented
would enable the option of staff being able to adjust an invoice that has had a payment against it but not access to all bank accounts...
-
Brandy Wilde commented
I find this the biggest struggle I have with Xero. I would like to be able to restrict my staff from seeing our banking information, but still give them access to some reports. It makes it really difficult to keep them busy enough and so much falls on my shoulders.
-
Olivia Potter commented
This feature would be a great help, especially to restrict certain reports that users can see, in particular for those who work in sales ledger or purchase ledger but should not be able to access other financial reports such as P&L.
-
Tim Allison commented
This would be a great feature - looks like it's been bubbling around for quite some time - hopefully gets into the pipeline.
-
Natalie Copley commented
To be able to segregate duties and have more advanced security settings would be ideal. Area managers need specific access to xero areas that reflect their business units, not the entire business.
-
Oliver Carter commented
Yep:
"This is an excellent technique by Xero, placing any shortcomings in an 'ideas' pool gets rid of support problems, I mean, an accounts package without multi-user security.
It's been since 2014, and not a single entry from Xero, because they don't read this stuff, its to get you off their backs. -
Jon Simcox commented
This is an excellent technique by Xero, placing any shortcomings in an 'ideas' pool gets rid of support problems, I mean, an accounts package without multi-user security.
It's been since 2014, and not a single entry from Xero, because they don't read this stuff, its to get you off their backs. -
Megan Pelser commented
This is a big thing that needs to be changed. Most accounting packages have a check list of what you want your users to see because it can get quite complicated. I think in terms of entry level staff and restrictions this is maybe a good idea.
I don't want users to be able to create contacts at all and this to be a finance thing but there is no restriction to this
-
Lalit Gopwani commented
How has this not been fixed yet? My client's business can't expand and have controls in place with differing levels for segregation of duties. Its quite embarrasing.
-
Bernard Malunda commented
Report viewing should be customizable eg AP's AR's , Sales reports and Purchases reports. Accounts receivables clerks should be able so see sales and AR's e.t.c
-
LIMOR ESAKOV commented
I would like to set up permissions on my Xero account where the user can raise quotes and convert only their quotes to invoices but they cannot see all the invoices in the business and they do not see a dashboard of all outstanding invoices owing.
-
Julie Curnow commented
I love Xero but I think their user access is its biggest short coming. User permissions are a fundamental part of any accounts system.
This is one area where I prefer more complexity and choice.
We lose a lot of potential efficiency and effectiveness by not allowing people to do their jobs / duplicating effort so that junior staff don't end up seeing confidential data. -
Paul King commented
Come on xero, as soon as a business grows to a certain level robust and customizable user controls are required. It’s really not difficult and clearly critical for so many of your customers.
-
Tracy Yan commented
Business unit or area managers need limit access to Xero areas that reflect their responsibilities, without being able to access all areas and all reports.
As the Admin role of Xero, I should be able to limit their access from my side...