Permissions & Roles Reference
Access in Monitr is controlled through roles. When you add a user to a team, you assign them a role that determines what they can see and do. Roles are presets — you select one from a dropdown; there is no manual permission assignment.
The available roles depend on the type of team:
- Entity teams — teams linked to specific entities use the entity roles
- Default team — the organisation-level team uses the organisation roles
Entity team roles
These roles appear when assigning users to a non-default team.
Entity administrator
Full read and write access to all entities assigned to the team. This role can manage all entity data — reporting structures, forecasts, budgets, adjusting entries, entity settings, and imports.
Grants access to: Dashboard, Reports, Forecasts, Reporting Structure, Validations, Adjusting Entries, Annual Accounts, Entities, and Create Booklet.
Entity reports with transactions
Read-only access to reports and the ability to drill down into individual GL transactions. Cannot edit any entity or organisation data.
Grants access to: Dashboard, Reports (with drill-down), and Create Booklet.
Entity reports without transactions
Read-only access to reports. Cannot view individual GL transactions or edit any data.
Grants access to: Dashboard, Reports (no drill-down), and Create Booklet.
Only receivables
Read-only access to the receivables section of the Outstanding Items dashboard only.
Grants access to: Dashboard (Outstanding Items — receivables only).
Organisation team roles (default team)
These roles appear for the default team, which spans the whole organisation. They include both entity-level access and consolidation access (Premium).
Organisation administrator
Full read and write access to the organisation and all its entities. Can manage all organisation data, teams, integrations, billing, and entity settings.
Grants access to: All sidebar items including Organisation Settings, Integrations, Teams, and Billing.
Organisation reports with transactions
Read-only access to reports for all entities and consolidation reports, including GL drill-down at both entity and consolidation level. Cannot edit any data.
Grants access to: Dashboard, Reports (with drill-down), and Create Booklet — at both entity and consolidation level.
Organisation reports without transactions
Read-only access to reports for all entities and consolidation reports. Cannot view GL transactions or edit any data.
Grants access to: Dashboard, Reports (no drill-down), and Create Booklet — at both entity and consolidation level.
Sidebar visibility by role
| Sidebar item | Entity admin | Entity reports (with/without transactions) | Only receivables | Org admin | Org reports |
|---|---|---|---|---|---|
| Dashboard | ✓ | ✓ | ✓ (receivables only) | ✓ | ✓ |
| Reports | ✓ | ✓ | — | ✓ | ✓ |
| Forecasts | ✓ | — | — | ✓ | — |
| Reporting Structure | ✓ | — | — | ✓ | — |
| Validations | ✓ | — | — | ✓ | — |
| Adjusting Entries | ✓ | — | — | ✓ | — |
| Annual Accounts | ✓ ¹ | — | — | — | — |
| Entities | ✓ | — | — | ✓ | — |
| Integrations | — | — | — | ✓ | — |
| Teams | — | — | — | ✓ | — |
| Billing | — | — | — | ✓ | — |
| Organisation Settings | — | — | — | ✓ | — |
| Create Booklet | ✓ | ✓ | — | ✓ | ✓ |
¹ Annual Accounts is only shown if the entity has an annual accounts integration connected.
Notes
- A user with no team assigned has no access to any entity or organisation data
- A user can be in multiple teams — permissions are unioned, so the most permissive role always applies
- Entity assignment at the team level further restricts which entities a user can see, regardless of their role
- In consolidation mode (Premium), the sidebar switches to organisation-level views; entity-specific items (Forecasts, Entities, Integrations) are not shown