Role-Based Access Controls (RBAC) ensure that only authorized users have access to sensitive information and actions within the software. In LoanPro, you can customize multiple roles with the exact access needed and assign them to users. With RBAC, users only have access to what they need to fulfill job functions, which ultimately saves time and helps keep data secure.

Creating agent user Role-Based Access

To create a role, navigate to Settings > Company > Access > Role-Based Access within your company account and click ‘Add New Role’. You can also click the icons to the right of the roles to either duplicate, edit, or delete a role.

There are three stages for adding/editing a role: General, Role Access, and API Role Access. Each step and the fields are listed below. 

General

• Name – The name of the role. The name should distinguish the role from other roles set up for your company.
• Description – This is a brief description of the role and should briefly describe the level of access.
• Customer SSN Visible – Selecting 'Yes' allows users with this role to see customers' government-issued identification numbers. These include Social Security Numbers (SSN) for US consumers; Social Insurance Tracking Numbers (SIN) for Canadian consumers; and Employee Identification Numbers (EIN) for US companies. If 'No' is selected, the agent user will only see the last four digits.
• Customer Bank Account Number Visible – This allows you to choose whether you want the bank account information visible to the user assigned to this role.
• Date of Birth Visibility – This allows you to conceal customer date of birth information from the users assigned to this role. There are several options available:
  • Uncensored (01/15/2000)
  • Full Censored (XX/XX/XXXX)
  • Year Censored (01/15/XXXX)
  • Day/Year Censored (01/XX/XXXX)
  • Month/Year Censored (XX/15/XXXX)

Once you've finished filling out the role settings, click ‘Next’ to determine the role's level(s) of access.

Role access

Here you can use the expandable tree to specify which areas of the software users with this role will have access to. Expand sections by clicking on the arrows to the left of section titles, or click ‘Expand All’ to unfurl the whole tree. You can also search for a specific access setting with the search bar at the top.

You can grant access to an entire section (by clicking the box next to the section title), or you can grant access to individual items (by clicking on their corresponding checkboxes). This resource tree holds hundreds of options which are all listed later in this article.

Once you have checked all the desired boxes, click ‘Next’.

Role API access

API access limits which API endpoints a user can and cannot use. This is useful for anyone who may need to use the API for one or many specific tasks. To determine the access for a role, use the resource tree to select which API endpoints you’d like this role to have access to. 

 Once you’ve completed this step click ‘Finish’ to save the role. 

Assigning agent user Role-Based Access

Each user in LoanPro should be assigned a role that determines what they can and cannot access in LoanPro. Tenant Admin users can assign roles to agents users.  This section will explain how to assign your custom roles to an agent user. 

Assigning a role

To begin, navigate to Users > Agent Users, then select a specific agent. This will open the Profile & Access tab which gives a general overview of the current settings of this user. To update or change settings click ‘Edit’. 

You can assign an agent user to a role by selecting the role dropdown menu located under the Profile Settings section as shown in the image below.

You'll see roles grouped into two sections, Global and Tenant.

• Global roles are defaults, and are automatically available in each tenant. These roles are designed to match the most common needs across the industry.
• Tenant roles are custom roles your company has created. These take a bit more work to set up, but cater to your specific needs.

After selecting a role, click 'Save' to finish.