Users & Permissions

Control who has access to Every and what they can do.

User Roles

Every provides different permission levels:

Owner
Admin
Manager
Employee

Full Administrative Access:

All system access
Billing and subscription
User management
Company settings
Cannot be removed

Adding Users

Navigate to Users

Go to Settings > Users > Add User

Enter Details

Full name
Email address
Job title
Department

Assign Role

Select appropriate permission level

Set Permissions

Configure specific access rights

Send Invitation

User receives email to activate account

Permission Matrix

Detailed permissions by role:

Feature	Owner	Admin	Manager	Employee
Company Settings	✓	✓	✗	✗
User Management	✓	✓	Limited	✗
Payroll Processing	✓	✓	View Only	✗
Bill Pay	✓	✓	Approve	✗
Banking	✓	✓	View Only	✗
Reports	✓	✓	Department	Personal
HR Management	✓	✓	Team	Self
Benefits Admin	✓	✓	View	Self

Custom Permissions

Fine-tune access with custom permissions:

Financial Permissions

View account balances
Create bills
Approve payments
Run payroll
View financial reports

HR Permissions

Access employee records
Approve time off
Conduct performance reviews
Manage benefits
Process terminations

Operational Permissions

Create reports
Export data
Configure integrations
Manage vendors
Access audit logs

Department Access

Restrict access by department:

Assign users to departments
Limit visibility to department data
Department-specific reporting
Hierarchical access control
Cross-department permissions for managers

Managing Existing Users

Edit User:

Select user from list
Click Edit
Modify details or permissions
Save changes

Deactivate User:

Select user
Click Deactivate
Confirm action
User loses system access

Reactivate User:

Filter for inactive users
Select user
Click Reactivate
User regains previous access

Deactivating a user immediately removes their access but preserves their historical data

Two-Factor Authentication

Enhance security with 2FA:

Required for Admins - Mandatory for financial access
Optional for Others - Can be enabled per user
Authentication Methods - SMS or authenticator app
Backup Codes - Emergency access codes

Enable 2FA:

Go to Profile > Security
Click Enable 2FA
Follow setup instructions
Save backup codes

Single Sign-On (SSO)

Enterprise feature for streamlined access:

SAML 2.0 support
Integration with identity providers
Automatic user provisioning
Centralized access control
Enhanced security

Supported providers:

Okta
Azure AD
Google Workspace
OneLogin

SSO is available on Enterprise plans

Session Management

Control user sessions:

Session Timeout - Auto-logout after inactivity
Concurrent Sessions - Limit simultaneous logins
Session History - View active sessions
Force Logout - End all sessions remotely

Access Audit Logs

Track user activity:

Login history
Permission changes
Financial transactions
Data exports
Settings modifications
Failed login attempts

View audit logs:

Settings > Security > Audit Logs
Filter by user, date, or action
Export for compliance

User Onboarding

Best practices for adding new users:

Prepare Account

Create user account with appropriate role

Training

Provide training on Every features

Documentation

Share relevant help documentation

Support

Assign mentor or point of contact

Review

Review permissions after 30 days

User Groups

Organize users into groups:

Create groups by department
Assign permissions to groups
Add users to multiple groups
Simplified permission management
Bulk permission updates

Password Policies

Enforce strong password requirements:

Minimum length (12+ characters)
Character complexity requirements
Password expiration (90 days)
Previous password restrictions
Account lockout after failed attempts

API Access

For developers and integrations:

Generate API keys
Assign API permissions
Monitor API usage
Revoke keys if compromised
Rate limiting

Regularly review user access and permissions to maintain security

Offboarding Users

When employees leave:

Immediate: Deactivate system access
Transfer: Reassign owned items and approvals
Backup: Export user’s important data
Document: Record termination date
Monitor: Watch for unauthorized access attempts

User Support

Help users with access issues:

Password resets
2FA troubleshooting
Permission requests
Access denied errors
Login problems

Getting Started

HR

Banking

Payroll

Bill Pay

Benefits

Settings

Reports