User Role - Restrict access to specific Settings
Ability to customise user roles to restrict some access in Xero.
Purpose: Some staff should only have limited access in Xero.
Hi everyone, we appreciate all your feedback on how we could evolve roles for customers using Xero. As you can see through the ideas on the platform, there are a wide range of combinations of permissions our customers want to see us build. As user roles impact all areas of the product, there are many considerations we must factor in when assessing how to solve for majority of our customers needs.
We’re beginning to conduct research on the current landscape and how we might approach some of the most predominant needs in roles for our customers. Front footing this, the discovery of this work will be long winded and there will be multiple phases of research and forms of engagement with users that’ll help shape the path ahead in this space.
We’d like to invite you, our community to be part of this research and discovery. This may involve interviews and sharing further feedback through direct surveys or questionnaires.
✍️ If this is something you’d be interested in taking a part of please fill in our short form here.
Though we won’t be able to invite everyone into every stage, our research team will be in touch with many of you over the coming months.
We will be back to share on the outcomes of our research and any progress around development of roles in Xero.
-
Cheryl Ward commented
I need an employee to be able to raise/approve sales AND purchase invoices, run the report off by themselves to show what's been raised each day/in the month but not have any access/visibility to bank accounts or bank reports. Today I have been told by support this has not come up and to vote for this idea. There needs to be the ability to choose in each section of the user set up what is require for us as a business.
-
Hyrum Modlik commented
Really need Xero to have more options on user accessibility. I want members of our team to not have access or to see what is the balance is in the business account that you can see on the dashboard or any reconciling. This needs to be sorted ASAP!!!!
-
Lois Kempnich commented
Xero does many things very well, it is disappointing to see how poorly this area has been addressed.
Internal controls and restricting access to invoice creaters is critical.
There is no point in having invoices Approved when the creater can then edit, void, and also apply payments against these invoices.
From an audit perspective the internal controls and segregation of duties concepts in this area are extrenely poor, and require urgent changes to be implemented by Xero. -
David Bluett commented
We have moved all of our GST clients onto Xero ledgers and now find that in order to be able to code their transactions, they must be given access the chart of accounts. Are Xero working on fixing this?
-
Robbie Hamlin commented
Yes we need some staff to be able to see what customers owe and if they have paid their bill but we dont want them to be able to edit the invoice, basically a read only of invoices outstanding.
None of the options at the moment are what we need, under the read only you need to have a tick box for all the areas so we can tick what they can read only.
Thanks -
HTWA Finance commented
Very important as we have staff from different offices being able to add and edit the chart of accounts which is throwing out our consolidated reporting processes and goal of account alignment
-
Tommy Li commented
Segregation of duties of users with multi-staged approval workflow is critical for businesses with multiple offices/regions.
e.g. multiple approver(s) and sequential approval (1st approver --> 2nd/Final approver)
-
John Stretton commented
I have clients who would like me to restrict their own staff's access to the areas they work on - mainly for reasons of confidentiality
-
Robert Symes commented
Causes uss a lot of work from clients that don't know what they are doing when they add or change the chart of accounts
-
Sophia Humphreys commented
User to be able to see all transactions, invoices and bills, tracking categories, P&L, but not bank balance or balance sheet.
The idea this employee can help the accountant with payments and invoices to make sure they are in the right chart of accounts and tracking code. But they are too junior to see the companies bank account balance. -
Muhammad Fahad Parvaiz commented
i want my staff to have access for data entry of all sort. The same is then approved by me. My staff does not have access to approve (though i want him to incorporate all types of entries)
-
Adam Lim commented
Yes exactly, for my sales rep now, its either very little access or too much access, pls do something to make Xero even better!
-
Rebecca Jones commented
Xero - Please get this sorted ASAP!
-
Adam Lim commented
Xero is really good and this User Access area is really too limited, it will really help a lot to give more customize access.PLS WORK ON THIS XERO, it will really make our life easier!
-
Accounts Kirkhomes commented
We want to be able to use xero to generate purchase orders but without the junior member of staff creating them to be able to see the amounts owed to our suppliers! We are now forced to either generate them manually which is very time consuming or consider alternative accounting systems
-
Exposure Ninja commented
Hey Xero,
Please add this feature now. It's really critical. We don't want them viewing sensitive information and not understand it. -
Hano Du Toit commented
Come on Xero. You can see from all the replies that the access level of users need to get attention. Please spend some time on this, than rather upgrading report structures.
-
Zachery Tan commented
Agree with this idea, many of my client feedback to me that the Xero user role is to limited.
for some example,
1. my client give them staff Draft Only rule, but it can`t create credit note.2. my client wan them staff to create invoice only, but this rule can`t access Inventory, because the staff need to check stock QTY balance.
3. when give access to auditor for Read Only, the auditor can`t generate the Inventory Report, is that other countries audit no need to check inventory transaction or summary? "Oh! SOFP show closing stock $XXXX, OK Verify!"
At the end all the user access become Standard Permission or Above~
-
April Dudley commented
To be able to restrict users to certain areas - eg. payables/receivables and even an option when setting up new clients /suppliers having a 2-stage sign-off if required.
-
Rafi Dewan commented
From a systems controls, security and audit perspective this is a massive oversight from Xero - as the same user can upload, approve and reconcile (in bank) a supplier and payment. Quite the security flaw and requires user access configurability to segregate duties