Access rights

From Protemos Wiki
Revision as of 21:24, 6 September 2025 by Andrii (talk | contribs) (Reports)

Jump to: navigation, search

Roles and access rights: cloud.protemos.com/user/roles

Some of the features described below will be available with the forthcoming system release.

Go to Settings ⇾ Access control ⇾ Roles .

Settings - access control - roles.png

Access rights for managers

This table shows the levels of access rights in the system and the permissions that are associated with each level. Using the data from it, you may define a certain level of access rights for your managers according to your needs:

Role-based access control.1.png

To put it shortly, it means the following:

  • Owner — the only person who can delete the account. Has full Administrator rights
  • Administrator — has full access to everything.
  • Project and finance manager — has access to everything, but cannot add managers and change system settings.
  • Project and client finance manager — the same as “Project and finance manager”, but all vendor-related finances are hidden from them. Select this if you want to hide what you pay to your vendors.
  • Project and vendor finance manager — the same “Project and finance manager”, but all client-related finances are hidden from them. Select this if you want to hide what your clients pay you.
  • Project manager — a manager who cannot see any finances. Select this for those managers who should not enter and see any finance-related info.


  • Sales manager — a manager who can create quotes and projects but cannot access jobs as well as job tenders. This role also does not allow to access vendor profiles and all vendor-related finances.
  • Accountant — this role lets the user create invoices based on payables and receivables entered by project managers, and also enter payments from clients and to vendors. The accountant cannot create or edit projects or assign jobs to vendors.
  • Client and vendor manager — can enter clients and vendors and their prices into the database. Everything else is hidden for this role.
  • Client manager — can enter clients and their prices into the database. Everything else is hidden for this role.
  • Vendor manager — can enter vendors and their prices into the database. Everything else is hidden for this role.
  • To-do employee — this role allows the user to create to-dos and access to-dos assigned to them.

Access rights to reports and settings

Reports

Each manager can view reports that are only relevant to their role permissions.

For instance, the “Project and client finance manager” role allows viewing financial reports related to clients, but does not allow viewing similar vendor-related reports.

Consequently, a manager with such a role will also not be able to see the reports on language pairs, services, specializations, etc., because they also consist of amounts paid to vendors.

Note: Only the “Administrator” role allows viewing all the reports.

Settings

The same logic applies to viewing settings: Each role (except “Administrator”) allows seeing particular settings sections in the view-only mode in accordance with the roles’ permissions.

For instance, a manager with the “Project manager” role does not have access to such sections as Payment methods, Taxes, CAT log conversion schemes, Email templates, etc., because this role does not include permissions related to the mentioned features.

Please note that all the roles allow viewing the System values section.

Note: Only the "Administrator" can not only view, but also edit all the settings.

Access rights for clients and vendors

Clients and vendors table.png

Client pools

By default, managers can access all the client profiles and other client-related objects according to their role but you can limit the access of your managers to specific clients according to your needs. To do so, you can create and assign a client pool to certain managers. For more info, please check the Client pools page.

Retrieved from "https://wiki.protemos.com/index.php?title=Access_rights&oldid=24973"