Overview: Active provides flexibility in managing user access to clients and binders through office assignments and client group restrictions. This article explains the different methods available to control user permissions.
Please refer to the Glossary for definitions of key terms used in this article.
Understanding permission controls in Active
By default, all users in Active have access to all binders. However, there are two primary methods to restrict access:
Office-based restrictions
Client Group restrictions
Method 1: Creating multiple offices
Creating separate offices allows you to control access based on office assignment. Here's how it works:
Navigate to the Admin Centre
Select Offices from the menu
Click Add Office to create a new office (e.g., Office B)
Assign specific clients to the new office
Only users assigned to Office B will be able to access clients and binders linked to that office
Note: Users must be explicitly assigned to an office to access its clients and binders.
Method 2: Restricting Client Groups
The second method involves using the Client Group restriction feature:
Go to the Clients section
Select the Client Group you want to restrict
Click Edit Client Group
Enable the Restrict access to client option
Use the Whitelisted Users field to specify which users should have access
The Partner and/or Manager (if specified) of the Client Group will automatically have access
WARNING: Once you restrict a Client Group, only whitelisted users and designated Partners/Managers will have access to all child entities under that group.
Best practices for managing permissions
Start with the least privileged access model
Regularly review user permissions
Document your permission structure
Test access after making changes
Maintain a list of restricted Client Groups