Access Control
Granular role-based permissions to ensure every user sees only what they need to.
XK One provides a comprehensive role-based access control (RBAC) system that lets you define exactly who can access which modules, features, and data within your organization.
Roles & Permissions
Create custom roles with specific permission sets. Assign users to one or more roles, and they automatically inherit the associated permissions. Common roles include Administrator, Manager, Accountant, HR Officer, and Employee.
Custom Roles
Define unlimited roles with granular permissions — control access to every module down to individual actions like create, read, update, and delete.
User Assignment
Assign multiple roles per user. Permissions are additive — a user gets all permissions from all their assigned roles.
Module-Level Control
Control access at the module level: Accounting, HRM, CRM, Projects, POS — each module can be enabled or disabled per role. Users without access simply won't see those sections in their dashboard.
Data-Level Permissions
Beyond module access, you can restrict what data a user sees within a module. For example, a manager may only see employees in their department, or a sales rep may only see their own leads and deals.
Record-Level Filtering
Scope data visibility by department, team, project, or custom criteria — ensuring sensitive information stays protected.
Two-Factor Authentication (2FA)
Enable 2FA for all users or require it only for specific roles like Administrators. XK One supports TOTP-based authenticator apps (Google Authenticator, Authy, etc.) for an additional layer of login security.
Session Management
View active sessions per user, force logout of suspicious sessions, and set session timeout policies. All login attempts — successful and failed — are logged for security review.