# Access & Permissions Overview The **Access Management** section is your central hub for managing roles and permissions across your organization - including in-house developers, treasury admins, support agents, finance managers, and more. The intuitive UI within the console makes it easy to define who can access what, and to tailor that access based on individual responsibilities. Depending on which **XYB components** your organization uses—whether it's **Ledger**, **Payments**, **Credit**, or **Account Engines,** many access privileges can be configured right here. This flexibility ensures that every user has the right level of access without compromising security or operational flow. ### Planning the Roles & Access in Advance To ensure security and operational efficiency, organizations must **define and assign roles strategically** across components like **Ledger, Payments, Accounts, and other banking components**. Establishing a **clear access control framework** prevents unauthorized actions, streamlines workflows, and enforces compliance by aligning user permissions with business requirements. Below is an example of how you can define the roles and access matrix. | **Role** | **Ledger (Transactions, Balances, Postings)** | **Payments (Processing, Authorization, Settlement)** | **Account Management** | | ---------------------- | ----------------------------------------------------------- | ---------------------------------------------------- | ----------------------------------- | | **Admin** | Full access (view, modify, approve, reconcile) | Full access (initiate, approve, process payments) | Full access (modify customer data) | | **Auditor** | Read-only access to all ledger data, reconciliation reports | Read-only access to payment logs | Read-only access | | **Treasury Manager** | View and approve fund movements | Approve high-value payments, batch processing | No access | | **Support Agent** | View-only access to customer transactions | No access | View-only | | **Compliance Officer** | Monitor transactions for AML and fraud | Monitor payment logs for compliance | No access | | **Account Manager** | No access | No access | Full access to modify customer data | After you've gained a full understanding on how to manage roles and permissions for various operations across banking modules, proceed to [managing employees and roles](https://github.com/xybteam/main-customerdocs/blob/main/xyb-console/access-and-permissions-overview/broken-reference/README.md). --- # Agent Instructions: Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter: ``` GET https://docs.xyb.co/xyb-console/access-and-permissions-overview.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.