{"id":1107,"date":"2026-06-23T14:01:58","date_gmt":"2026-06-23T14:01:58","guid":{"rendered":"https:\/\/www.freethought.uk\/help\/managing-client-portal-user-permissions\/"},"modified":"2026-06-23T14:23:55","modified_gmt":"2026-06-23T14:23:55","slug":"managing-client-portal-user-permissions","status":"publish","type":"post","link":"https:\/\/www.freethought.uk\/help\/managing-client-portal-user-permissions\/","title":{"rendered":"Managing Client Portal User Permissions"},"content":{"rendered":"\n<p>Your client portal supports multiple users under a single account. This means you can invite colleagues, team members, or contractors to access your account with their own login, without sharing your password. Each person can be given exactly the right level of access for their role, and that access can be adjusted or removed at any time.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\">Why User Permissions Matter<\/h2>\n\n\n\n<p>Sharing a single set of login credentials across multiple people creates real risks. If one person&#8217;s device is compromised, or if someone leaves your organisation, your entire account is exposed. It also makes it impossible to see who made changes, raised tickets, or placed orders \u2014 there&#8217;s no accountability trail.<\/p>\n\n\n\n<p>By giving each person their own user account with tailored permissions, you:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li><strong>Reduce risk<\/strong> \u2014 a departing employee&#8217;s access can be removed instantly, without changing your own login<\/li>\n\n\n\n<li><strong>Maintain an audit trail<\/strong> \u2014 actions are tied to individual users, not a shared account<\/li>\n\n\n\n<li><strong>Apply least-privilege access<\/strong> \u2014 staff only see and do what they need for their role<\/li>\n\n\n\n<li><strong>Stay in control<\/strong> \u2014 as the account owner, you retain full access and can manage all users at any time<\/li>\n<\/ul>\n\n\n\n<h2 class=\"wp-block-heading\">How to Invite a New User<\/h2>\n\n\n\n<p>To add someone to your account, log in to<a href=\"http:\/\/portal.freethought.uk\"> portal.freethought.uk<\/a> and navigate to <strong>Account Details > User Management<\/strong>. You&#8217;ll see a list of current users and an <strong>Invite New User<\/strong> button in the top-right corner.<\/p>\n\n\n\n<p>Click <strong>Invite New User<\/strong>, enter the person&#8217;s email address, then choose one of two options:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li><strong>All Permissions<\/strong> \u2014 grants the invited user full access to everything on the account (equivalent to account owner access, except they cannot remove the owner)<\/li>\n\n\n\n<li><strong>Choose Permissions<\/strong> \u2014 lets you select specific permissions from the list below<\/li>\n<\/ul>\n\n\n\n<p>Once you click <strong>Send Invite<\/strong>, the person will receive an email invitation. If they already have a portal account, they can accept the invite and access your account using their existing credentials. If not, the invitation will prompt them to create one.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\">Available Permissions Explained<\/h2>\n\n\n\n<p>When selecting <strong>Choose Permissions<\/strong>, you can grant any combination of the following:<\/p>\n\n\n\n<figure class=\"wp-block-table is-style-stripes\"><table><thead><tr><th>Permission<\/th><th>What it allows<\/th><\/tr><\/thead><tbody><tr><td><strong>Modify Master Account Profile<\/strong><\/td><td>View and edit the main account contact details, address, and profile information<\/td><\/tr><tr><td><strong>View &amp; Manage Contacts<\/strong><\/td><td>Access and manage the contacts listed on the account<\/td><\/tr><tr><td><strong>View Products &amp; Services<\/strong><\/td><td>See all active products, services, and add-ons on the account<\/td><\/tr><tr><td><strong>View &amp; Modify Product Passwords<\/strong><\/td><td>Reset service passwords and perform related account actions<\/td><\/tr><tr><td><strong>Perform Single Sign-On<\/strong><\/td><td>Use one-click login (SSO) to access individual services directly from the portal<\/td><\/tr><tr><td><strong>View Domains<\/strong><\/td><td>See domain registrations associated with the account<\/td><\/tr><tr><td><strong>Manage Domain Settings<\/strong><\/td><td>Change nameservers, update WHOIS details, and initiate domain transfers<\/td><\/tr><tr><td><strong>View &amp; Pay Invoices<\/strong><\/td><td>See and pay outstanding invoices<\/td><\/tr><tr><td><strong>View &amp; Accept Quotes<\/strong><\/td><td>Review and accept quotes raised against the account<\/td><\/tr><tr><td><strong>View &amp; Open Support Tickets<\/strong><\/td><td>Open, respond to, and manage support tickets<\/td><\/tr><tr><td><strong>View &amp; Manage Affiliate Account<\/strong><\/td><td>Access the affiliate programme and request commission withdrawals<\/td><\/tr><tr><td><strong>View Emails<\/strong><\/td><td>Access the account&#8217;s email history (system-generated emails)<\/td><\/tr><tr><td><strong>Place New Orders \/ Upgrades \/ Cancellations<\/strong><\/td><td>Order new services, upgrade existing ones, or submit cancellation requests<\/td><\/tr><\/tbody><\/table><\/figure>\n\n\n\n<h2 class=\"wp-block-heading\">Recommended Permission Sets by Role<\/h2>\n\n\n\n<p>Every organisation is different, but here are some sensible starting points for common roles:<\/p>\n\n\n\n<h3 class=\"wp-block-heading\">Technical \/ IT Staff<\/h3>\n\n\n\n<p>Typically need access to services and the ability to log in to them, but shouldn&#8217;t necessarily be placing orders or viewing financial information.<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>View Products &amp; Services<\/li>\n\n\n\n<li>View &amp; Modify Product Passwords<\/li>\n\n\n\n<li>Perform Single Sign-On<\/li>\n\n\n\n<li>View Domains<\/li>\n\n\n\n<li>Manage Domain Settings<\/li>\n\n\n\n<li>View &amp; Open Support Tickets<\/li>\n<\/ul>\n\n\n\n<h3 class=\"wp-block-heading\">Finance \/ Accounts<\/h3>\n\n\n\n<p>Typically need to view and pay invoices, but don&#8217;t need technical access to services.<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>View Products &amp; Services<\/li>\n\n\n\n<li>View &amp; Pay Invoices<\/li>\n\n\n\n<li>View &amp; Accept Quotes<\/li>\n\n\n\n<li>View Emails<\/li>\n<\/ul>\n\n\n\n<h3 class=\"wp-block-heading\">Account \/ Project Manager<\/h3>\n\n\n\n<p>May need a broader view to coordinate across the account, but ordering and financial changes can be restricted.<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>View Products &amp; Services<\/li>\n\n\n\n<li>View Domains<\/li>\n\n\n\n<li>View &amp; Open Support Tickets<\/li>\n\n\n\n<li>View &amp; Accept Quotes<\/li>\n\n\n\n<li>View Emails<\/li>\n<\/ul>\n\n\n\n<p class=\"banner-tip\">\ud83d\udc49<strong>Security tip:<\/strong> Avoid granting <strong>All Permissions<\/strong> by default. Even for trusted staff, it is best practice to grant only what is needed. This limits the impact if an account is ever compromised or misused. <\/p>\n\n\n\n<h2 class=\"wp-block-heading\">Editing a User&#8217;s Permissions<\/h2>\n\n\n\n<p>You can change a user&#8217;s permissions at any time. In <strong>User Management<\/strong>, locate the user and click the <strong>Edit<\/strong> option next to their name. From here you can update their permission set and save the changes. The updated permissions take effect immediately \u2014 no need to re-send an invitation.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\">Removing a User Who No Longer Needs Access<\/h2>\n\n\n\n<p>When someone leaves your organisation or no longer needs access to your account, you should remove them promptly. This is especially important for staff who had permissions to view financial information, manage services, or raise support tickets.<\/p>\n\n\n\n<p>To remove a user, go to <strong>Account Details &gt; User Management<\/strong>, find the user in the list, and select <strong>Remove<\/strong>. You will be asked to confirm the action. Once removed, the user will no longer be able to see or access your account \u2014 but their own portal account (if they have other accounts) is unaffected.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\">When Someone Leaves: A Quick Checklist<\/h3>\n\n\n\n<ol class=\"wp-block-list\">\n<li>Go to <strong>User Management<\/strong> in your client portal<\/li>\n\n\n\n<li>Locate the user and click <strong>Remove<\/strong><\/li>\n\n\n\n<li>Confirm the removal when prompted<\/li>\n\n\n\n<li>If the person had access to any service logins (hosting control panels, etc.), change those passwords separately<\/li>\n\n\n\n<li>Review whether any open support tickets were raised under their name and reassign or follow up as needed<\/li>\n<\/ol>\n\n\n\n<h2 class=\"wp-block-heading\">The Account Owner<\/h2>\n\n\n\n<p>The account owner is always listed in User Management with an <strong>Owner<\/strong> badge. The owner always has full permissions and cannot be removed by other users. Only the owner themselves can change the primary account email address or transfer ownership.<\/p>\n\n\n\n<p>If you need to transfer account ownership \u2014 for example if a member of staff who set up the account has left \u2014 please contact our support team.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\">Need Help?<\/h2>\n\n\n\n<p>If you&#8217;re unsure which permissions to grant, or need help adding or removing a user, please don&#8217;t hesitate to reach out to our support team.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Your client portal supports multiple users under a single account. This means you can invite colleagues, team members, or contractors to access your account with their own login, without sharing your password. Each person can be given exactly the right level of access for their role, and that access can&hellip;<\/p>\n","protected":false},"author":7,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[22,16],"tags":[],"class_list":["post-1107","post","type-post","status-publish","format-standard","hentry","category-access","category-security"],"_links":{"self":[{"href":"https:\/\/www.freethought.uk\/help\/wp-json\/wp\/v2\/posts\/1107","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.freethought.uk\/help\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.freethought.uk\/help\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.freethought.uk\/help\/wp-json\/wp\/v2\/users\/7"}],"replies":[{"embeddable":true,"href":"https:\/\/www.freethought.uk\/help\/wp-json\/wp\/v2\/comments?post=1107"}],"version-history":[{"count":2,"href":"https:\/\/www.freethought.uk\/help\/wp-json\/wp\/v2\/posts\/1107\/revisions"}],"predecessor-version":[{"id":1109,"href":"https:\/\/www.freethought.uk\/help\/wp-json\/wp\/v2\/posts\/1107\/revisions\/1109"}],"wp:attachment":[{"href":"https:\/\/www.freethought.uk\/help\/wp-json\/wp\/v2\/media?parent=1107"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.freethought.uk\/help\/wp-json\/wp\/v2\/categories?post=1107"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.freethought.uk\/help\/wp-json\/wp\/v2\/tags?post=1107"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}