Admins

WHMCS allows you to create admins to access and use the Admin Area. Admins are separate from the clients that access the Client Area. You can create individual accounts for each admin and use detailed controls to set what they’re able to view and do for each area of functionality.

Administrator Users

You can create and configure the individual admins in your WHMCS installation. The list of admins includes all of the admins on your WHMCS installation. This list includes each admin’s name, email address, username, role, and assigned support departments.

You can access this feature at Configuration () > System Settings > Administrator Users or by going to Configuration () > Manage Admins.

Create or Manage Admins

To create an admin, click Add New Administrator, or to edit an existing admin, click the Edit icon. Then, configure the desired settings for the admin and click Save Changes.

  • Admin usernames must begin with a letter (AZ or az), contain only alphanumeric characters, and not include spaces or other special characters.
  • Admin passwords cannot use the following characters: &, ", ', <, or >.
  • Make certain to check the support departments whose tickets you want the admin to see and be able to respond to.
    If you assign the admin to a role that includes Access All Tickets Directly, they can access other departments through direct links.
  • The notes that you enter are visible to the admin and to all admins with the Full Administrator role.
    For more information, see My Notes.

Administrator Roles

Administrator roles allow you to set the permissions for different types of admins. You can set up as many different administrator roles as you want and then assign your admins to them.

WHMCS includes three default roles: Full, Sales, and Support Only.

You can access this feature at Configuration () > System Settings > Administrator Roles.

Create or Update an Administrator Role

To create an administrator role, click Add New Role Group, or to edit an existing role, click the Edit icon. Then, configure the desired settings and permissions for that role and click Save.

For all admin roles, you must enable Support Center Overview or Main Homepage. This allows the admin to see the support center overview or Admin Dashboard after logging in.
For steps to create or edit a role, see Add or Edit a Role.

Role Permissions

The system provides options for Admin Area actions and email receiving preferences for system emails, account emails, and support emails.

  • Manage permissions allow you to manage an item.
  • View permissions allow you to view an item.
  • Create permissions allow you to create a new item.
    Many Create permissions require the related Manage permission. If you see Access Denied errors, add the Manage permission. For example, errors will occur when creating invoices if you don’t also enable Manage Invoices.
  • Configure permissions are generally for settings under Configuration () > System Settings.

For example, for an admin who works with clients and tickets, grant the Manage and View permissions for tickets, domains, and client products. If they will be processing client orders or creating new services for clients, also grant the applicable Create and Manage permissions.

If an admin will provide remote support and you only want them to view items but not change them, you can grant them the desired View permissions only.

Limiting Access to a Specific Addon

You may want to limit an admin to a specific addon in order to allow third-party developers access to debug an issue with that module.

To do this:

  1. Enable the Addon Modules permission for the role.
  2. Enable any other permissions that that addon requires. For example, if an addon adds a Support PIN number within the client profile Summary tab, you may need to grant the View Clients Summary permission to allow the third-party developer to test it.
  3. Edit the Access Control setting at Configuration () > System Settings > Addon Modules to grant access to that admin.

Enabling Permissions for Debugging Provisioning Modules

You may want to enable the following permissions for debugging provisioning modules:

  • Configure Servers
  • View Clients Products/Services
  • View Module Debug Log
  • Perform Module Command Operations

Further permissions, such as the ability to edit services with Edit Clients Products/Services, are generally not necessary. Evaluate this need on a case-by-case basis.

Managing Two Factor Authentication

Two-factor authentication adds an additional layer of security by introducing a second step to the login process. It takes something you know (for example, your password), and adds a second factor, typically something you physically have (such as your phone). Since the system will require both to log in, if an attacker obtains your password, two-factor authentication would stop them from accessing your account.

For more information, see Two Factor Authentication.

Last modified: April 30, 2024