Each user has a role that determines what they can and cannot do in Denari. These roles manage who can view, edit, or delete information in projects, ensuring that the right team members have the right level of access.
Identifying a restriction
A roles and permissions restriction is likely in place if:
- A button or action appears unclickable (disabled)
- A button or action is completely hidden
- A user reports that someone else can perform an action they cannot
- Users only have editing access to projects they are assigned to.
- Admin users have broader access across projects, but only Admins can manage user accounts and settings.
User types
Each user in Denari is assigned a User Type, which defines their base level of access:
| User Type | Description |
|---|
| User | Regular users with standard permissions. |
| Admin | Everything a User can do, plus the ability to delete and unlock projects and access the Admin Dashboard to manage users in their firm. |
Project role assignments
In addition to their User Type, users must be assigned to specific projects to gain editing rights:
| Project Role | Description |
|---|
| Preparer | Can fully edit the project, upload documents, make entries, and tie out balances. |
| Reviewer | Same access as Preparer, with the added ability to lock projects when complete. |
| Unassigned | Can view the project but cannot make changes. This includes downloading reports and documents. |
Permissions matrix
| Action | User | Admin |
|---|
| View projects | Yes | Yes |
| Export trial balances | Yes | Yes |
| Download documents | Yes | Yes |
| Upload, edit, replace, or delete documents | Yes | Yes |
| Ignore or reconcile lines | Yes | Yes |
| Sync from QBO | Yes | Yes |
| Create or edit accounts in the Chart of Accounts | Yes | Yes |
| Create or edit journal entries | Yes | Yes |
| Edit project name, period, or duration | Yes | Yes |
| Update project users | Assigned only | Yes |
| Lock a project (as assigned reviewer) | Yes | Yes |
| Unlock a project | No | Yes |
| Delete projects | No | Yes |
| Delete clients and entities | No | No |
Summary
- Users must be assigned to a project as a Preparer or Reviewer to make changes.
- Users with no role on a project always have read-only access, regardless of their User Type.
- Group Tags (CAS and Tax) enforce team-based access restrictions.
- Admins can manage project users and delete projects, even if they are not project users.
- Admins can add and delete firm users in their admin dashboard.
- Only an Admin can unlock a locked project. Both Admins and assigned Reviewers can lock a completed project.
If you need to delete clients or entities, reach out to someone on the Denari team.
