User Roles & Access
Control who on your team can do what in Qserve.
Available Roles
| Role | Description |
|---|---|
| Owner / Admin | Full access to all features, settings, and billing. Can add and remove team members. |
| Manager | Can manage subscribers, payments, and routers. Cannot change billing settings or delete the ISP account. |
| Support | Can view subscriber profiles, record payments, reconnect/suspend accounts. Read-only for sites and routers. |
| Viewer | Read-only access to all data. Cannot make changes. Useful for finance or reporting staff. |
Permissions Matrix
| Action | Owner | Manager | Support | Viewer |
|---|---|---|---|---|
| View subscribers | ✓ | ✓ | ✓ | ✓ |
| Add / edit subscribers | ✓ | ✓ | ✓ | ✗ |
| Record payments | ✓ | ✓ | ✓ | ✗ |
| Suspend / reconnect | ✓ | ✓ | ✓ | ✗ |
| Manage sites & routers | ✓ | ✓ | ✗ | ✗ |
| Create / edit plans | ✓ | ✓ | ✗ | ✗ |
| View reports | ✓ | ✓ | ✓ | ✓ |
| Change billing / payment settings | ✓ | ✗ | ✗ | ✗ |
| Manage team members | ✓ | ✗ | ✗ | ✗ |
| View audit logs | ✓ | ✓ | ✗ | ✗ |
Adding a Team Member
- Go to Settings → Access Control.
- Click Invite Team Member.
- Enter their email address and select their role.
- Click Send Invite. They receive an email with a login link.
- They set their own password on first login.
Removing a Team Member
- Go to Settings → Access Control.
- Find the team member and click Revoke Access.
- Their account is deactivated immediately. Any active sessions are terminated.
Password Policy
Qserve enforces a minimum password length of 8 characters. After 5 consecutive failed login attempts, the account is locked for 30 minutes. The account owner can unlock accounts from the Access Control page.
Team members can change their own password at any time from Settings → Account → Change Password.
Assign the minimum required role to each team member. Use Support for field technicians who only need to reconnect subscribers, and reserve Owner for account administrators.