User Role - Restrict access to specific Settings
Ability to customise user roles to restrict some access in Xero.
Purpose: Some staff should only have limited access in Xero.
Hi everyone, we appreciate all your feedback on how we could evolve roles for customers using Xero. As you can see through the ideas on the platform, there are a wide range of combinations of permissions our customers want to see us build. As user roles impact all areas of the product, there are many considerations we must factor in when assessing how to solve for majority of our customers needs.
We’re beginning to conduct research on the current landscape and how we might approach some of the most predominant needs in roles for our customers. Front footing this, the discovery of this work will be long winded and there will be multiple phases of research and forms of engagement with users that’ll help shape the path ahead in this space.
We’d like to invite you, our community to be part of this research and discovery. This may involve interviews and sharing further feedback through direct surveys or questionnaires.
✍️ If this is something you’d be interested in taking a part of please fill in our short form here.
Though we won’t be able to invite everyone into every stage, our research team will be in touch with many of you over the coming months.
We will be back to share on the outcomes of our research and any progress around development of roles in Xero.
-
Samantha Harrison commented
I really feel this needs addressing as matter of urgency , as organisations do not want all employees to have access to their banking information but needing them to have access to some reports. When you need certain employees in the busiess to have access to just the Sales and Reports this is as part of their role but you don't want them to see information on the bank, for instance what other employees are paid.
-
Gemma Papp commented
OMG just seen this was originally posted in 2014!
-
Gemma Papp commented
I contacted support to see if this was something they could help me with because I want to lock down some features for security reasons but they referred me to this thread!! 4 pages of people complaining about the same thing! Not good!
This is a high security issue and needs developing asap to create user roles similar to bank authorisations! -
Marco Brown commented
Critical !! (umpteenth comment)
-
Peter Firth commented
So I"ve been sent to this chat for a request on email notifications and this thing has been not resolved since 2014.... great.
I just want no timesheet notifications to some staff. Why should someone that can create a staff member and doesn't do payroll have to be notified with every timesheet that comes in?!!
Xero are the quickest to put prices up but love a good deflection on actions.
-
Cheryl Ward commented
When are xero going to listen to their customers and action such change! How many comments or ideas need to be logged before they take notice, it's really critical for businesses to be able to have more choice of user controls/visibility.
-
Kevin Penn commented
We have an issue with one of our clients now due to a product update - our client has an employee dealing purely with CIS, and until very recently was able to verify new subcontractors and create purchase invoices with an 'invoice only' user setting. Perfect - that was all she needed!! HOWEVER, a recent update has now removed the ability for users with this setting to verify subcontractor!!! As others have said, the software really needs lots of options and flexibility regarding user access/restrictions and I am puzzled as to why such a basic and obvious requirement has not yet been implemented. Please prioritise, and as a minimum stop making changes that make things more difficult!!
-
Marco Brown commented
Exactly my problem Cheryl! So frustrating. And the user roles don't make sense, for example the debtors clerk has no access to the accounts receivable reports. I wish they can tackle this issue with the urgency it deserves.
-
Cheryl Ward commented
This is so restricting in terms of employees/roles/departments. We are about to hire and want to give our new employee access to only one bank account however this is not an option! We would also want them to be able to run reports for aged payables & aged receivables but again it's either opening them up to all or literally nothing!!! Frustrating!!!
-
Murli Vasu commented
Payroll reports should not be available to all advisor. Where an advisor doesn't have payroll admn. role, should not have access to payroll reports. This is very preliminary and basic restriction to be implemented asap.
thanks
Murli SBA Albany. -
Louis Nicotra commented
We need to be able to split access by region so our EU staff can only see invoices raised in their sales territories.
The differences between the levels of customisation is huge and massively restrictive to us.
-
Greg Inwood commented
We need to be able to split access by region so our EU staff can only see invoices raised in their sales territories.
The differences between the levels of customisation is huge and massively restrictive to us.
-
Heather Stitt commented
Bank Account access and information should be able to be removed, or add on if required.
I am sure that Xero employee's don't have Bank Account access...!!!
Not being able to remove access to Bank makes the User access rather a redundant feature.
Please fix this as a matter of URGENCY.
-
Jon Simcox commented
We need to allow our credit control staff to access outstanding invoices only, currently they would see our whole business.
-
Jarred Walmsley commented
Agree with many of the other comments, access is far to wide.
The gulf between being able to run the AR report & the P&L report is massive!
Many admin staff will need to do the bank rec, update staff on debtor balances, send out invoices and the like but not have access to any of the financial information like profit & such, but that's not possible with the current settings.
-
Gerard Lillicrap commented
I agree that current access levels are too coarse. I need to give a Director access to the reports only (even if I could restrict it to a selection of reports). In computer parlance, I need a read only access level.
-
Charlotte Woodbridge commented
I agree, the user roles are ridiculous, there is a huge jump between invoice only and standard, bank feeds are visible when they don't need to be, there should be a lot more options available so you can select if you want them to see bank feeds and if so which ones! There should ALWAYS be the option to keep certain bank feeds/reports private. This is a big issue and needs addressing ASAP!
-
David Kim commented
I stumbled onto this issue after finding out that one of the admin person from a different company division was creating an account in general ledger as it fits in Chart of Account.. There is no option to give limited access to a standard Xero user account it's either give them full access or none..
When will this issue be resolved !
-
Tracy Hunt commented
Hello Xero Team,
If you are aiming at small businesses to make it easier for them working with third party accountants then why would you have users rights that combine business function with accounting???
So the junior who raises PO's in the business can reconcile and see ALL transactions of the bank accounts!!
-
Marco Brown commented
Come on Xero, some of your access levels does not make sense.
For example, I have a client that has a junior finance person with invoice-only access who processes invoices and in some instances takes cash from customers, process the cash payment and must issue a receipt to the customers. But unfortunately the same person who processed the receipt cannot print it! Unfathomable!
Come on Xero, your whole access needs re-looking at with a wide variety of options where the administrator can tick what a person has access to NOT pre-designed and fixed by Xero. It's just not working.