7 results found
-
Xero Verify app
Allow MyIR account to be added into the Xero Verify app.
1 voteThanks for your feedback, Johanna. I want to be open, while we'll continue to work on improving the experience when verifying with Xero we don't have any plans to remove the Xero verification process or completely integrate this with other systems verification processes.
-
Expenses - Multiple levels of approval
We need to upload an Approval Matrix/Approval hierarchy with a scope depending on "Location" and "Total amount" with 2 levels of approvers for "Expense claims" (EC) & "Purchase Orders" (PO).
With that, we are looking for automation on sending the EC & PO automatically by the system to the correspondent Approver depending on the scope through email.81 votesHi team, we appreciate wanting more flexibility in expense permissions and that for some businesses a multi-level approval process is necessary.
Though we are continuing to develop Xero expenses to encompass more tools and features our customers are after, we want to be upfront that we don’t have any plans to change expense permissions on our current roadmap.
We will continue to assess your feedback and consider ideas like this as our plans evolve. If there is any change we will share an update.
-
User Role: More options for access rights
More granular level for user access rights
I have seen lots of ideas around this same topic but worded slightly differently.
Essentially, the access rights are far too high level causing users to have access to tasks and rights to delete, approve when they shouldn't
25 votesAppreciate your looking through the forums and existing ideas, Tracy.
Although it might seem quite specific it does help to have detail of the specific permission sets and what is missing in the existing roles shared for each idea, and get a sense of the users that are interested in these differing permissions.
As you can likely imagine, with the number of features and different roles & responsibilities staff may have across businesses a matrices of options for every single permissions across every feature in Xero would be quite complex and cumbersome when trying to assign what a user can or can't do in your organisation.
While we don't have direct plans for this level of incremental control, our product teams are definitely interested to consider the makeup of permissions within a given area or feature of Xero. I'd urge you and others here to add your support to…
-
MFA | Remove requirement to use
Get rid of this stupid MFA on EVERY sign in.
It used to be monthly which was bad enough, now it is a constant pain having to use an authentication device just to get access to Xero. MFA is a complete waste of user time. My bank doesn't use it and I trust them not to lose my money, so why does accounting software need it?
If the ATO insists on it with their stupid STP, then link it to STP and nothing else.13 votesHi everyone, we appreciate your feedback about multi-factor authentication, and this has been shared with our teams internally. Security and protecting your data is highly important to us and we want to be upfront that we don't have any plans for removing the requirements for logging into Xero with multi-factor authentication.
That said, we're continuing to improve the experience and offering more ways to verify your identity when logging into Xero.
-
User Roles | Individual permissions to use Pay with Wise
1) Limit which users can use this payment system (for security reasons)
2) Limit how much they can pay out at any one time (for security reasons)2 votesHi all, while we removed the Pay with Wise, as a follow on from our last update we wanted to confirm that we have released UK bill payments in Xero.
Customers in the UK can set up direct bank transfer as a payment method for GBP bills to quickly and securely pay bills. Funds are transferred from your bank account by Crezco using open banking. The availability of open banking in the UK has enabled us to offer this on-platform. 🙂- Read more on our Blog
-
User Role - Restrict access to specific Settings
Ability to customise user roles to restrict some access in Xero.
Purpose: Some staff should only have limited access in Xero.
455 votesHey everyone, we've been following the conversation closely and we want to acknowledge how important this is for many of you.
Atm, we’re on a long journey to provide more controls within Xero features that our customers need. Being such a broad idea that touches many areas of our platform, we’d like to encourage adding your votes to specific user permissions that matter most to you, such as:
- Bank Accounts: For more control over who can see bank account balances and access specific accounts, please see the idea here: User Role - Restrict access to individual bank accounts
- Sales and Invoicing: If you’d like to see changes to permissions around sales reporting and editing invoice templates, you can follow that conversation here: User roles: Restrict access to Invoice Settings
- Reports: To have your say on restricting access to specific reports, the relevant idea is here: User permissions - Assign user…
-
Login - Don't Log Me Out/Extend Log Out Time (more than 60 minutes)
Develop the feature where Xero doesn't log user out time is extended for more than 60 minutes when it’s idle.
Purpose: Because having to log in again can disrupt users' workflow, which some users had to be interrupted as they’re also taking care of their business at the same time.
1,079 votesHi everyone, we appreciate the interest surrounding this idea, however we want to be open that we're unable to extend our log-out time past 60 minutes. Xero hold a lot of sensitive information including bank data and we're required to be as secure as online banking.
Any session information running on a web browser can potentially be stolen. If the session does not time out. You then have an infinitely long vulnerability window to session hijacking. Our best option is to keep a tight expiration window on the session cookie, and regenerate them frequently. Even setting a long timeout doesn't help with this - too long a timeout will greatly increase the risk of invasion or potentially jeopardise your personal data and the safety and integrity of the Xero application itself. This is why we maintain control of this.
If we detect there's been no activity on a page (e.g…
- Don't see your idea?