Skip to content
← Share and support customer ideas for Xero

Users & setup

Customer ideas for converting to Xero and organisation set up

Learn about the forums, how to contribute and create a good idea on Xero Central

Users & setup

Categories

(thinking…)

Enter your idea

(thinking…)

Enter your idea and we'll search to see if someone has already suggested it.

If a similar idea already exists, you can support and comment on it.

If it doesn't exist, you can post your idea so others can support it.

Enter your idea and we'll search to see if someone has already suggested it.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback

12 results found

  1. MFA - Set up additional options

    It would be really helpful to have more MFA options active - to be able to have the option of authenticator, back up email and security questions all active at the same time.

    1 vote

    We're glad you're here

    Please sign in to leave feedback
    Signed in as (Sign out)
    Close
    Close

    We’ll send you updates on this idea

    0 comments  ·  Login  ·  Admin →
    How important is this to you?

    We're glad you're here

    Please sign in to leave feedback
    Signed in as (Sign out)
    Close
    Close

  2. Logout now option on the timeout screen

    When the screen locks it would be helpful to have the option just to logout. Currently if you have timed out but finished working on Xero you actually have to login just to be able to log out which is a waste of time.

    6 votes

    We're glad you're here

    Please sign in to leave feedback
    Signed in as (Sign out)
    Close
    Close

    We’ll send you updates on this idea

    5 comments  ·  Login  ·  Admin →
    How important is this to you?

    We're glad you're here

    Please sign in to leave feedback
    Signed in as (Sign out)
    Close
    Close

  3. Practice - Ability to anonymize Staff login

    My firm works with additional bookkeepers, and we do not want to have their business or personal emails displayed in our clients files.

    Ideally, they would be behind the scenes and would just show our practice as connected.

    Next best would be showing first name or first and last name, but no email address.

    We can assign them an email address from our firm for a more professional appearance, but often their certifications follow their own business/personal email addresses.

    3 votes

    We're glad you're here

    Please sign in to leave feedback
    Signed in as (Sign out)
    Close
    Close

    We’ll send you updates on this idea

    0 comments  ·  Login  ·  Admin →
    How important is this to you?

    We're glad you're here

    Please sign in to leave feedback
    Signed in as (Sign out)
    Close
    Close

  4. MFA | Role that can enable another user to reset multi factor authentication

    Have a designated advisor / subscriber have the ability to remove multi factor authentication from a user so that a new method can be set up by the user.

    Purpose: For those businesses that have operators which are not tech savy, having either the subscriber or the advisor who holds a professional membership / qualification, who have passed ID verification processes, let the designated person have the ability to toggle off multi factor authentication so that the user and re set up their authentication process so that when their phone is lost or stolen and their alternative entry points don't…

    15 votes

    We're glad you're here

    Please sign in to leave feedback
    Signed in as (Sign out)
    Close
    Close

    We’ll send you updates on this idea

    3 comments  ·  Login  ·  Admin →
    How important is this to you?

    We're glad you're here

    Please sign in to leave feedback
    Signed in as (Sign out)
    Close
    Close

  5. Login page - Redirect to ReturnUrl if already logged in

    Redirect to the ReturnUrl on the login page if you refresh and have already logged back in, eg. from another tab.

    Context: I usually have many Xero tabs open. If I am logged out due to session timeout, all of these tabs redirect to the login page with a ReturnUrl in the query string. If I log in on one of those login pages, I am correctly returned to where I was in that tab. If I refresh another one of the tabs after logging in, it stays on the login page rather than automatically redirecting to the ReturnUrl.

    It…

    2 votes

    We're glad you're here

    Please sign in to leave feedback
    Signed in as (Sign out)
    Close
    Close

    We’ll send you updates on this idea

    0 comments  ·  Login  ·  Admin →
    How important is this to you?

    We're glad you're here

    Please sign in to leave feedback
    Signed in as (Sign out)
    Close
    Close

  6. History & Notes - Login - Timestamps for login history

    Audit trail of logins to Xero - there seems to be a series of different visual aids and short screen reports showing when a user last logged in, however from an audit perspective, it would be ideal to have a report that can be run for set periods showing when users have logged in. The information to run this type of report is there from the History and Notes report and the Assurance Dashboard. However a report that shows a time/date stamp would be ideal as evidence in cases of fraud/performance management

    26 votes

    We're glad you're here

    Please sign in to leave feedback
    Signed in as (Sign out)
    Close
    Close

    We’ll send you updates on this idea

    4 comments  ·  Login  ·  Admin →
    How important is this to you?

    We're glad you're here

    Please sign in to leave feedback
    Signed in as (Sign out)
    Close
    Close

  7. Xero Accounting app - Password Confirmation

    The mobile app currently does not ask you to confirm your password when you setup a pin for your account. If you were to miss-enter your pin, which is easy to do, you essentially immediately lock yourself out of your account. The system should ask for a pin, then ask you to confirm the pin before finalising it, allowing you to go back a step if you enter in the wrong pin.

    2 votes

    We're glad you're here

    Please sign in to leave feedback
    Signed in as (Sign out)
    Close
    Close

    We’ll send you updates on this idea

    0 comments  ·  Login  ·  Admin →
    How important is this to you?

    We're glad you're here

    Please sign in to leave feedback
    Signed in as (Sign out)
    Close
    Close

  8. MFA - Allow setup of Multi-Factor Authentication on first Login

    Currently, when you invite a brand new user to Xero who has never used Xero before:
    1) on first log in you need to register for Xero & set password
    2) on second log in, it asks you to set up multi-factor authentication (MFA)

    It would be great if MFA could all be set up in the first log in as it creates confusion for the new user on the second log in. Its also easier for accountants when helping clients to set up new log ins if it could all be done at once, rather than Register > log…

    2 votes

    We're glad you're here

    Please sign in to leave feedback
    Signed in as (Sign out)
    Close
    Close

    We’ll send you updates on this idea

    0 comments  ·  Login  ·  Admin →
    How important is this to you?

    We're glad you're here

    Please sign in to leave feedback
    Signed in as (Sign out)
    Close
    Close

  9. Login - Use backup email or phone for confirmation of suspicious login

    you should be able to confirm your account with a secondary email. I got locked out of my primary email, and Xero thought my normal log in was suspicious. I had not way to confirm my account. I have a secondary email. What is the point of the secondary email if there is no way to use it to confirm my account? Or use my phone for a text confirmation.

    6 votes

    We're glad you're here

    Please sign in to leave feedback
    Signed in as (Sign out)
    Close
    Close

    We’ll send you updates on this idea

    1 comment  ·  Login  ·  Admin →
    How important is this to you?

    We're glad you're here

    Please sign in to leave feedback
    Signed in as (Sign out)
    Close
    Close

  10. Xero log in - Choose default organisation

    Set the demo company as the first company seen on log-in, or be able to set which one you want to see.

    I often use my laptop when speaking with clients and for a split second after logging-in I am on another clients business dashboard until I can grab the mouse and change it to their business. I don't think this is good business practice.

    18 votes

    We're glad you're here

    Please sign in to leave feedback
    Signed in as (Sign out)
    Close
    Close

    We’ll send you updates on this idea

    2 comments  ·  Login  ·  Admin →
    How important is this to you?

    We're glad you're here

    Please sign in to leave feedback
    Signed in as (Sign out)
    Close
    Close

  11. Multi-Factor Authentication: Support for third party push notifications

    With the recent changes to MFA dropping the remember devices from 30 days to 24 hours, the MFA prompt is now far more often (which is of course more secure) however it does slow down login.

    Could you please look at updating the MFA configuration to allow push notifications to the mobile authentication app, or better still the number match, which is far more secure. Examples from Microsoft is below, but the priciple would apply in most major platforms.

    https://learn.microsoft.com/en-us/azure/active-directory/authentication/how-to-mfa-number-match

    This would improve the user experiance over the token, but also improve the security overall.

    Thanks
    Dave

    31 votes

    We're glad you're here

    Please sign in to leave feedback
    Signed in as (Sign out)
    Close
    Close

    We’ll send you updates on this idea

    11 comments  ·  Login  ·  Admin →
    How important is this to you?

    We're glad you're here

    Please sign in to leave feedback
    Signed in as (Sign out)
    Close
    Close

  12. MFA: Remember 'Trust this device' setting after 24 hours

    I understand the ATO requires you to enter 2FA daily, but that doesn't mean the tickbox should uncheck itself every day.

    If I tick trust this device on Monday and login using 2FA, I can then login without 2FA for 24 hours.

    After that 24 hours, I need to login using 2FA again AND I have to tick the trust this device box again to get another 24 hour reprieve.

    Let us tick the box or another box that will remember our choice ongoing. So each day I only have to login using 2FA again but my choice to trust…

    11 votes

    We're glad you're here

    Please sign in to leave feedback
    Signed in as (Sign out)
    Close
    Close

    We’ll send you updates on this idea

    12 comments  ·  Login  ·  Admin →
    How important is this to you?

    We're glad you're here

    Please sign in to leave feedback
    Signed in as (Sign out)
    Close
    Close
  • Don't see your idea?