Effective user management is crucial for maintaining data security and operational efficiency in any business system. Unleashed's Role Permissions feature provides a robust framework for controlling what your team members can access and modify within your account. This comprehensive guide will walk you through everything you need to know about creating and managing roles to keep your data secure while empowering your team to work effectively.

Understanding the Role Hierarchy

Unleashed employs a hierarchical role system built on parent-child relationships. When you create a new role, it becomes a "child" of an existing "parent" role, inheriting all the permissions that the parent possesses. This inheritance model ensures consistency and prevents privilege escalation, as child roles can never have more access than their parents.

Once you create a child role from a parent, the parent role's permissions become locked and cannot be modified. This design choice maintains system integrity but requires careful planning. The recommended approach is to customize roles from the top down, starting with the broadest permissions and gradually filtering out access as you create more specialized child roles.

Every account begins with a default "Superuser" role that provides comprehensive access to nearly all features and pages within the platform. The only exceptions are the Unleashed API Access page (reserved exclusively for the Account Owner) and billing functions. This Superuser role serves as an excellent foundation for creating more specialized roles within your organization.

Manage Roles

The process of creating a new role is straightforward but requires strategic thinking about your team's needs:

Go to Settings > Security > Roles.
In "User Role", enter a unique name for the role.
Use the Parent drop-down menu to select a parent role.
Click Add.

The new role will immediately appear in your roles list and can be assigned to users and its permissions further configured.

To edit a role's name:

Go to Settings > Security > Roles.
Click on the "Role Name" field.
Update the role's name.
Click away from the "Role Name" field.

When a role is no longer needed or used, it can be deleted:

Go to Settings > Security > Roles.
Along the role's row, click on the bin icon.

📌 Note: Roles currently assigned to a User cannot be deleted.

Understanding Role Permissions

The real power of the Role feature emerges in the Role Permissions interface, accessible through Settings > Security > Role Permissions. This comprehensive dashboard allows you to fine-tune exactly what each role can access and modify.

Role permissions are organized in a collapsible hierarchy that can be expanded or collapsed using the "Expand/Collapse All" button or by clicking on the top-layer permission of each section. This organization makes it easy to navigate complex permission structures while maintaining a clear overview of each role's capabilities.

Unleashed uses an intuitive visual system for managing permissions:

Access permissions are controlled through padlock icons in the Access column. A green open padlock indicates the role has access to that particular page or feature, while a grey locked padlock shows restricted access. You can toggle individual permissions by clicking their respective padlock icons, or click the padlock next to the "Access" header to enable or disable all permissions simultaneously.
Editing permissions add another layer of control through the Can Edit column. Where available, these permissions determine whether users can modify information they have access to. A green checkbox with a pencil icon grants editing privileges, while a grey empty checkbox restricts users to view-only access. Like access permissions, these can be toggled individually or managed in bulk through the header controls.

Configure a role's permissions

To manage a role's permissions:

Go to Settings > Security > Role Permissions.
Use the Role drop-down menu to select the existing role.
Navigate through the Permission list, and click on the Access padlock and Can Edit icons to update each permission.

Any changes to a role's permissions require users with that role assigned to log out and back in, clearing their browser's cache and cookies, to ensure permission changes are properly applied.

📌 Note: You cannot edit your own role's permissions.

If a role hasn't been created yet, you can click on "Add new role" in the Role Permissions page, enter a unique role name, and click Add. The new role will have "Superuser" as its parent, sharing its permissions until configured otherwise.

Role Permissions

The table below outlines the permissions available to configure per role.

Permission type	"Access" Permissions	"Can Edit" Permissions
Advanced Inventory Manager	Advanced Inventory Manager (AIM)	N/A
Business Intelligence (BI)	BI Foundation: Customers Inventory Production Purchases Sales BI Vision: Customers Inventory Production Purchases Sales Sales: BI Historical Data Import - Sales Sales: Targets Targets & Tracking Targets & Tracking: Notifications Targets & Tracking: Targets	BI Vision: Sales Sales: Targets
Change Password	Change Password	N/A
Dashboard	Dashboard	N/A
Data Exporter	Assembly Data Source Purchase Order Data Source Sales Order Data Source Sales Shipment Data Source Warehouse Transfer Data Source	Data Exporter
File Library	File Library	N/A
Inventory	Batch Number Import Batch Numbers Enquiry Page Create Stock Count Export Stock On Hand Import Stock On Hand Markup Price Update Price List Enquiry Product Product Allocations Product Change Codes Product Enquiry Product Export Product Import Product Price Markup Import Product Supplier Import Quick Stock Count Serial Number Import Serial Numbers Enquiry Page Stock Adjustment Stock Adjustments Export Stock Count Entry Stock Count Import Stock Count List Stock Movement Stock On Hand Enquiry Stock On Hand Enquiry: Cost Stock Revaluation Stock Valuation Export Transaction Enquiry View Products View Stock Adjustments View Warehouse Stock Transfers Warehouse Stock Transfer Warehouse Stock Transfer Import	N/A
Mobile Sales App	Mobile Sales App Mobile Sales App: View all SalesOrders	N/A
Production	Assembly Details Assembly Details: Assembly Durations Assembly Details: Assembly Export Assembly Details: Assembly Import Assembly Kanban Bill of Materials Details Disassembly Details Export Bill of Materials Import Bill of Materials Production Enquiry View Assemblies View Bill of Materials	N/A
Purchases	Complete Purchase Order Costing Analysis Report Costing Analysis Report Export Export Purchases Export Suppliers Import Purchases Import Suppliers Purchase Enquiry Purchase Order Purchase Order Approvals Purchase Order Costing Receipt Purchase Reorder Report Supplier Supplier Change Codes Supplier Return View Purchases View Supplier Returns View Suppliers	N/A
Sales	Backorder Enquiry Batch Complete Complete Sales Order Create Purchase Create Shipment Credit Credit Enquiry Customer Customer: Customer Pricing Customer: Override Credit Limits Customer: Set Credit Limits Customer Change Codes Export Credits Export Customers Export Sales Invoices Export Sales Orders Export Sales Quotes Import Customers Import Sales Quotes Import/Export Invoice Enquiry Margin Enquiry Sales Enquiry Sales Invoice Sales Order Sales Order: Margin Sales Order: Profit Sales Order Discounts Sales Order Pricing Sales Quote Sales Quote: Margin Sales Quote: Profit Sales Quote: Unit Price Sales Quote Enquiry Sales Shipment Shipment Enquiry Unit Sales Enquiry View Credits View Customers View Invoices View Sales Orders View Sales Orders: Average Profit View Sales Orders: Cost View Sales Orders: Margin View Sales Orders: Total Profit View Sales Quotes View Sales Quotes: Average Profit View Sales Quotes: Cost View Sales Quotes: Margin View Sales Quotes: Profit View Shipments	Customer Customer Pricing Sales Order Sales Order Discounts Sales Quote Unit Price
Settings	Accounting Configuration Accounts Adjustment Reasons Assembly Statuses Attribute Sets Automated Notification Company Credit Reasons Currency Rates Customer Types Delivery Methods Document Designer eCommerce Hub: eCommerce Hub Amazon eCommerce Hub: eCommerce Hub Shopify eCommerce Hub: eCommerce Hub WooCommerce Email History Export All Integration Store Invite a User My Account Page Payment Terms Prefixes Product Groups Purchase Order Statuses Role Permissions Roles Sales Order Group Sales Order Statuses Salespersons Sell Price Tiers Setup Wizard Shipping Companies Supplier Return Reasons Taxes Unit Of Measures Update Billing Update Credit Card Upgrade Your Subscription Users Version Feature List View Warehouses Warehouse Xero Configuration Xero Export Xero Import	N/A

Frequently asked questions

What is the role permission for allowing a user to edit customer pricing?

When the user's role is selected in Settings > Security > Role Permissions page, go to Sales > Customer > Customer Pricing, and grant access and editing rights to all Customer Pricing by enabling the Access and Can Edit icons.

What permission restricts a user from deleting a Sales Order Line?

When the user's role is selected in Settings > Security > Role Permissions page, go to Sales > Sales Order Pricing, and disable its Can Edit icon to stop the user from deleting Order Lines from Sales Orders, or editing the Order Lines' price fields.