Managing User Roles and Permissions
Overview
Roles and permissions in iVendNext control what users can view, edit, and manage, ensuring secure access. This article explains how to:
✔ Create and assign roles
✔ Configure granular permissions
✔ Restrict document access (e.g., "Only If Creator")
✔ Troubleshoot permission conflicts
By the end, you’ll be able to structure roles efficiently while maintaining security.
Step 1: Understanding Roles vs. Permissions
Example: A "Sales User" role may have permissions to create orders but not delete them.
Step 2: Accessing Role Permissions Manager
Go to Home → Users and Permissions → Permissions → Role Permissions Manager.
Select a Document Type (e.g., "Sales Order," "Purchase Invoice").
The system loads permissions for all roles.
Step 3: Assigning Permissions to Roles
Basic Permissions
For each role, configure:
Create (Can add new records?)
Read (Can view records?)
Write (Can edit records?)
Delete (Can remove records?)
Submit (Can finalize documents?)
Advanced Restrictions
Only If Creator (Restrict access to self-created documents)
Restrict by Department (Limit visibility by organizational unit)
Step 4: Creating Custom Roles
Navigate to Home → Users and Permissions → Role.
Click Add New Role.
Define:
Role Name (e.g., "Junior Accountant")
Desk Access (Enable for System Users only)
Module-wise Permissions (Assign access to specific apps)
Note: Uncheck "Desk Access" for Website Users (e.g., customers).
Step 5: Applying Role Restrictions
User-Level Restrictions
IP Restrictions (Limit logins to office networks)
Login Hours (e.g., 9 AM–6 PM only)
Document-Level Restrictions
Use User Permissions Manager to override role settings for specific users.
Open User → Permissions → Set User Permissions.
Select "Restrict by Document Type" for granular control.
Common Permission Scenarios
Troubleshooting Access Issues
❌ Problem: User can’t see a module.
✅ Fix: Check Module Profile in their role.
❌ Problem: User can’t edit their own documents.
✅ Fix: Verify "Write" permissions in Role Permissions Manager.
❌ Problem: Website User sees backend menus.
✅ Fix: Ensure "Desk Access" is disabled in their role.
Best Practices
Here’s a quick look at some of the best practices for User Role Management.
✔ Principle of Least Privilege (Grant minimal necessary access).
✔ Audit roles quarterly to remove unused permissions.
✔ Use role hierarchies (e.g., "Manager" inherits "Employee" permissions).
✔ Document role definitions for consistency.
Related Articles
Understanding User Roles and Permissions
Overview User roles and permissions are key to keeping your application secure and running smoothly. They control who can access what, based on each user’s responsibilities. This article explains the basics to help you set up and manage roles in ...Creating and Managing Roles
Overview Roles in iVendNext control user access and editing rights. To keep workflows secure and efficient, it's important to set them up correctly. This article walks you through adding, configuring, and managing roles step by step. Step 1: Adding a ...Creating and Managing Retail Permissions
Overview Retail permissions define what actions users can perform at the Point of Sale (POS), such as processing sales, overriding prices, or managing shifts. This article provides a step-by-step approach to setting up retail permissions, covering ...Managing Export/Print Permissions for Reports
Overview iVendNext reports may include sensitive business data that shouldn’t be shared freely. This article explains how to control which users can export or print reports, ensuring compliance and data security while maintaining workflow efficiency. ...Managing Permissions for Pages and Reports
Overview Pages and reports in iVendNext may include sensitive data. With role-based permissions, you can control who can view, edit, print, or export them. This guide shows how to manage access—whether you're a developer or admin. 1. Understanding ...