119 results found
-
Login - Don't Log Me Out/Extend Log Out Time (more than 60 minutes)
Develop the feature where Xero doesn't log user out time is extended for more than 60 minutes when it’s idle.
Purpose: Because having to log in again can disrupt users' workflow, which some users had to be interrupted as they’re also taking care of their business at the same time.
1,079 votesHi everyone, we appreciate the interest surrounding this idea, however we want to be open that we're unable to extend our log-out time past 60 minutes. Xero hold a lot of sensitive information including bank data and we're required to be as secure as online banking.
Any session information running on a web browser can potentially be stolen. If the session does not time out. You then have an infinitely long vulnerability window to session hijacking. Our best option is to keep a tight expiration window on the session cookie, and regenerate them frequently. Even setting a long timeout doesn't help with this - too long a timeout will greatly increase the risk of invasion or potentially jeopardise your personal data and the safety and integrity of the Xero application itself. This is why we maintain control of this.
If we detect there's been no activity on a page (e.g… -
User Role - Restrict access to individual bank accounts
To have the ability limit some users to access some bank accounts within Xero org.
Purpose: To limit some staff to not be able to see the information about the client’s bank balance.
606 votesWe appreciate everyone that's contributed here. Needs in more incremental permissions for bank accounts, have been clearly highlighted in your feedback - from protecting the confidentiality of payroll information to securely delegating reconciliation tasks for specific accounts.
Leaning in from our last update, our product teams have conducted lots of research of existing user roles, to highlight the most critical areas work is needed to power up our customers use of Xero.
Reporting and inventory are our first areas of priority, and you may have seen recent updates across ideas for these areas.
Permissions to bank accounts is another area that stood out in our research, but has more dependencies and will take longer to develop.
We'll keep you updated as our journey with roles and permissions evolve and there's more in the space of banking to share with you all.
-
Login - Enable Microsoft Entra ID Single Sign On
Ability to use Azure Active Directory for MFA.
Purpose: It makes Microsoft users easily log into Xero.
592 votesHi everyone, we appreciate all the feedback and votes on this idea. We know using Microsoft Entra ID SSO is now common practice for some businesses and being able to access Xero via a native integration with Entra ID would streamline how your teams log in and get set up in Xero, as well as help in managing access for larger teams and keeping things secure.
Our product team have been working with a small limited group of Partners to develop SSO capabilities. Though we can't give any definite timelines yet, we’ll keep this thread updated with news. Thanks
-
User Role - Access to Products & Services (Inventory) and Purchases/Sales only
Ability to allow individual access to inventory(products & services) and sales in Xero.
Purpose: Enable ability to view different sets of information within an org.
488 votesHi Community! 👋
Thank you for sharing your feedback and engaging with us on this important capability. I’m excited to share that we’re now moving into the next stage as development gets underway.
I look forward to updating you as we make progress 🙂 🙏
-
User Role - Restrict access to specific Settings
Ability to customise user roles to restrict some access in Xero.
Purpose: Some staff should only have limited access in Xero.
455 votesHey everyone, we've been following the conversation closely and we want to acknowledge how important this is for many of you.
Atm, we’re on a long journey to provide more controls within Xero features that our customers need. Being such a broad idea that touches many areas of our platform, we’d like to encourage adding your votes to specific user permissions that matter most to you, such as:
- Bank Accounts: For more control over who can see bank account balances and access specific accounts, please see the idea here: User Role - Restrict access to individual bank accounts
- Sales and Invoicing: If you’d like to see changes to permissions around sales reporting and editing invoice templates, you can follow that conversation here: User roles: Restrict access to Invoice Settings
- Reports: To have your say on restricting access to specific reports, the relevant idea is here: User permissions - Assign user…
-
User Role - Access to specific feature only
"Business and accounting" role needs ability to more narrowly define. I want an employee to access invoices (receivables) but that then gives them access to ALL financial reporting, e.g. P&L, which I don't want them to see.
449 votesHey everyone, thank you for all your feedback. We’re on a long journey to provide more granular access and controls within Xero features that our customers need.
As you may have seen in some of our recent updates across other user roles ideas we’re currently in the process of adding more permissions within Reporting and Inventory. Further to this our research has highlighted Payroll and Banking as areas that more controls are most needed, and are on our agenda as we continue to develop permissions and access to features.
Your feedback here and through direct engagements with our teams have been extremely insightful, and we appreciate all your inputs.
I'll continue to provide updates on the development of roles for features as we progress.
-
User Permissions - Access to reconcile without viewing balances
It would be really useful if you could give a user permission to be able to reconcile and post bank transactions, but not see the bank balance.
320 votesHi community, your ongoing interest in giving users the ability to reconcile without viewing account balances is welcomed.
We understand why this level of bank permission control matters. As recently mentioned in my updates on this idea, while we do have current work for user roles underway there is more complexities to developing permissions within the banking space and this isn't on the immediate roadmap.
As we continue our journey to evolving roles within Xero we'll be sure to share any progress for permissions in bank accounts with you all, here.
-
Xero Expense - Assign Approver for multiple submitters
Would love to see the option to assign an expense approver to multiple expense submitters or even an 'Approvalmax' approver matrix function added to Xero Expenses. Currently using Xero Expenses to administer over 100 employees expenses and need stronger controls than central finance approving all. Happy to help design/ test!
286 votesHi everyone, we appreciate the number of users that'd like to see more mechanisms to assign and control who approves specific employee's claims.
Our product teams have a close eye on this idea, and while this feature is not in the roadmap atm, they'll keep reviewing this as they continue to plan and prioritise work for Expenses. So, if there us any shift in status we'll share an update to keep you all informed on the idea, here.
-
User Role - Invoice Only + View Reports
Ability to assign a user where they can only have Invoice only and view only reports.
Purpose: To make user permission easier to set up, rather than having to upgrade them into Standard. As this will allow a user having access to more confidential reports.
169 votesHi community, our reporting team is actively testing how reports are grouped and accessed, and we'd like your feedback to help us design a better report grouping structure that supports role-based access in reporting.
How you can help: Complete a quick 15-min online activity to test how reports are grouped and accessed:
- Part 1: answer questions about the current report grouping
- Part 2: explores a new grouping and role-based report access
👉If you're interested, please use this link to get started.
We greatly appreciate your ongoing support & valuable input for the reporting team!
(If you’ve already taken this activity, there's no need to do it again — our researchers may have contacted you earlier 😊)
-
User Roles - Purchase order only access
We wish to let some of our users have access to purchase orders, raising & viewing etc.
Currently if we give them access to purchase orders it also lets them see supplier balances and also click into the supplier and therefore into the accounts i.e invoices etc.
We would like our staff to just see the purchase orders and raise purchase orders but not have access to anything else.
154 votes -
Payroll: User Roles - Options to give permission to approve/decline leave and read only Payroll reports.
Ability to have more flexible permission in Xero Payroll, especially for read only Payroll reports and to give other users permission to approve/decline leave requests.
Purpose: To have more options and flexibility in assigning users to Xero Payroll.
136 votesHi Community! Thanks for your active and on-going participation in this idea. The volume of comments and votes highlights how important more granular user permissions are for managing your payroll processes effectively.
Improving user permissions and providing greater control over sensitive data is a key area of focus for us. While we have no specific feature to announce today, your feedback is critical in shaping the future of this part of Xero.
Because of the clear need you've all highlighted and our desire to investigate this further, we're moving this idea's status to In Discovery.
During the discovery phase, our product team will be digging deeper into the core problems you’ve raised.
We appreciate your patience as we explore this. We'll be sure to update this thread when we have more to share. Thank you again for helping us understand what matters most to you.
-
Permissions - User Roles to Submit and Approve Quotes and Purchase Orders
It is really basic, the permission control is not flexible and give more options. How about to give multiple choosing box for permissions. I want to create a user and give him permission to create and print quotations and a purchase order permission to create and submit for approval. Because the purchase approval permission i want to give to the manager levels only.
114 votesHi everyone, thanks for sharing your feedback on this idea. We appreciate you explaining how important more flexible user permissions are for your businesses. We understand having granular control over who can create, submit, and approve quotes and purchase orders could help many of you implement better internal controls and protect sensitive financial information.
This idea is now moving to In Discovery, which means our product team are reviewing the viability of the idea as part of wider development of the permissions/user role functionality in Xero. We'll keep you updated here as we learn more.
-
Permissions | Contacts - Private or limited access to certain contacts
It would be great if it is possible to make a contact private in order to limited the users who has access to a contact, especially when the contact contains private information that should not be accessible by all users.
107 votes -
Expenses - Multiple levels of approval
We need to upload an Approval Matrix/Approval hierarchy with a scope depending on "Location" and "Total amount" with 2 levels of approvers for "Expense claims" (EC) & "Purchase Orders" (PO).
With that, we are looking for automation on sending the EC & PO automatically by the system to the correspondent Approver depending on the scope through email.81 votesHi team, we appreciate wanting more flexibility in expense permissions and that for some businesses a multi-level approval process is necessary.
Though we are continuing to develop Xero expenses to encompass more tools and features our customers are after, we want to be upfront that we don’t have any plans to change expense permissions on our current roadmap.
We will continue to assess your feedback and consider ideas like this as our plans evolve. If there is any change we will share an update.
-
Permissions: Payroll - Payroll admin limited access
Ability to give payroll admins only permission to staff.
Purpose: To make the staff have fully access to Payroll but not other parts of Xero.
79 votesHi everyone, we appreciate you taking the time to share how important more flexible payroll permissions are for your teams.
It's clear that having granular control over who can access different parts of payroll would make a real difference to how you manage timesheets and leave approvals, as well as restrict access to other sensitive areas.
From research, Payroll is definitely an area we know needs more permission controls for varying roles. This is something our product teams are beginning to explore and do deeper research of. We'll keep you updated as we make progress, and we're grateful for your continued input.
-
User Role - Reconcile without access to approve invoices
Being able to customize each user role is quite important as every person in every company does something different. Giving them access to systems they shouldn't have because the User Role they need to do their job allows them access to these other areas is a security risk in general.
Putting in Custom Roles will also allow companies to adjust the Users to their Company Policies for controls.
This is the main reason I am posting this, as we are soon bringing on a new junior accountant where I will need to give them "approval" rights for Invoicing and a…
78 votesAppreciate the idea here - Being transparent, developing granular permissions or roles for every feature and action throughout Xero is not in our plans.
Understanding more of the permission sets majority of users need, will help understand where the biggest impact could be made.
I've slightly adjusted the title to suit the needs of the role you mentioned. We'll get a sense of others that'd like this too.
-
User Access: Lock Dates - Specify User Access
Ability to specify which user has access to the lock dates.
Purpose: To prevent clients from changing prior year figures in Xero after the financials have been published.
74 votesHi everyone, thanks for sharing your feedback on this idea. We appreciate you explaining how important more control over lock dates is for protecting your data integrity and supporting your workflows.
As part of our wider review of roles and permissions across Xero, we’re pleased to let you know that this is a feature that we’re exploring controls in and reviewing the viability of. We'll keep you updated here as our plans shape up further.
-
MFA | Add support for Yubikey
Please can you add support for Yubikeys, the development webpage is here:
68 votesThanks for sharing with us here, everyone. We appreciate why you'd like simpler methods to improve efficiency when logging in to use Xero.
Our product team have started some work to enable logging into Xero using passkeys. As mentioned in some of your comments, this'll support Yubikeys by default.
For now, we'll move this idea to Under review and I'll come back to keep you updated on the latest news for this feature.
-
Xero Login - Enable Passkeys as a replacement to passwords
Passkeys (https://fidoalliance.org/passkeys/) are rapidly taking over passwords and are infinitely more secure than passwords.
Intuit are already using Passkeys (https://fidoalliance.org/case-study-intuits-roi-from-passwordless-customer-authentication/)
56 votesHi team, we've just launched passkeys to our first group of users. From this week, Xero Me app users who haven't set up MFA yet will be able to use passkeys to log into Xero. Next, we'll be progressively rolling this out to more users over the coming months. We look forward to and welcome your feedback here. As we have more news on the rollout I'll share with you on this idea.
-
User role - Read Only access to reports only
To be able to add restrictions to the Read Only permission for users so that bank account details are not available but allow users to only have access to reporting, income/expenditure transactions etc.
56 votes
- Don't see your idea?