Role-Based Access Control in XLReporting: Secure, flexible, and practical
Used by businesses across the professional services landscape, XLReporting helps firms consolidate, report, and forecast their financials with accuracy, efficiency and flexibility. Security and accessibility is another key feature of the system – experts from XLReporting outline how this is achieved with the system’s Role-Based Access Control.
The Role-Based Access Control (RBAC) system allows admin users of XLReporting to indicate what users are allowed to do in the system and what they are allowed to see.
To start with, what are user roles in XLReporting? With a user role, you can set what a user can access and do on the platform. It controls:
- Which parts of the system are available to them
- What actions can they take (like view, edit, import, or share)
- What data can they see, filtered by company, cost centre, account groups, and more
User roles can be adjusted to fit the specific responsibilities of each team member.
Permissions: What can a user do?
Each role is assigned permissions that determine access to specific features. You decide whether someone can:
- View or share dashboards
- Run or edit reports
- Enter planning data
- Import bookkeeping information
- Manage data models or objects
This way, everyone has access to what they need – and nothing more. It keeps the workspace secure and easy to manage.
Filters: What can a user see?
In addition to feature access, roles also filter which data someone sees. For instance:
- A user might only see data for one company
- Department heads can be limited to their cost centre
- Project leads might only access the data for specific projects
Some clients of XLReporting take it a step further by assigning visibility to specific account ranges. Sales teams work with revenue and cost-of-sales accounts. At the same time, HR focuses on personnel costs.
Combine roles to tailor access
It is possible to assign more than one role to a user. One role might define what they can do, while another limits what they see. For example:
- A planner can update forecast data
- A department filter ensures they only see data from their business unit
This makes the system flexible enough to adapt to any structure.
Built-in roles to get started
XLReporting includes five standard roles:
- Define: Full access to define and manage everything
- Manage: Can update data, run reports, forecast, and add users
- Planning: Can enter planning data and view reports/models
- Report: Can view reports
- View: Can view reports and models, but cannot edit
You can use these or edit them. RBAC is one of the standard functionalities in enterprise CPM systems. But these often adhere to standard system roles. In standard software, you also see these roles, but they are pre-programmed user roles that you cannot change. XLReporting provides the structure of predefined roles, along with the flexibility to adjust or extend them to meet your specific needs.
Real-world examples
A few examples that show how this works in practice:
- A school director with a View role and only sees the budget for their school.
- A project manager with a Planning role with a filter for specific projects they manage.
- A board member has access to dashboards only, avoiding the need for PDF reports.
- A theatre budget holder can edit forecast data, but only for selected cost accounts.
- A restaurant manager in a large chain sees just the sales and wage reports for their location.
- Some users are given a streamlined role with only essential reports and models, keeping their experience simple and focused.
Conclusion
Role-Based Access Control in XLReporting isn’t just about restricting access. It’s about giving teams exactly what they need, without more or less. You stay in control, reduce risk, and maintain a clear and efficient reporting environment.
About XLReporting
XLReporting offers an integrated solution for reporting, budgeting, forecasting, and consolidation – without the complexity of traditional enterprise platforms. The platform easily connects with accounting systems such as Exact, Twinfield, Visma, Xero, or QuickBooks, as well as over 40 other systems.
