Managing Access to My Account

You can control who has access to your account to protect your data. This article explains how you can approve or reject a request to access your account and manage who has access.

Note

Note: We are currently rolling out an improved process for allowing account access. This article is only relevant to accounts that have already been migrated to the new process. For more information, see below Identify the Correct Account Access Page.

Overview

To safeguard your data, only those you have granted permission can access your account. If you are sent a request to access your account, an email is sent to admins that have access to the Access to My Account page and a notification appears as a banner in the Cato Management Application (CMA).

A request includes:

  • Who is requesting access

  • The level of access

  • How long the access is for

On the Access to My Account page, you can track and manage who has access to your account at any time. If you identify any access that is unauthorized, unnecessary, or no longer relevant, you can take immediate action to revoke access and ensure your account remains secure.

Use Case - Providing Partner Access

Your partner needs to check you have configured a Network rule correctly. To view the relevant pages in your CMA they send you a request to access the Network Rules page. The partner cannot view your account until you have granted them access.

Identify the Correct Account Access Page

In December 2024, Cato began rolling out a new method to manage access to your account. This article documents the new method. If you go to Account > Access to my Account, you can identify which version your account is using:

  • If the page has a search bar and status filter, your account is using the new method and you can continue to the next section.

    access_new.jpg

  • If the page does not have a search bar or status filter, your account is using the legacy method, and see this article.

    access_legacy.jpg

Managing Access to Your Account

You can approve or reject a request to access your account.

Access_from_customer.png

To manage access to your account:

  1. From the navigation menu, click Account > Access To My Account.

  2. Click on the request you want to review.

  3. (Optional) Add an Internal note.

  4. Approve or Reject the request.

Tracking Account Access Requests

On the Account > Access To My Account page, you can track all the requests to access your account and their status. The possible statuses are:

Status

Explanation

Active

Your account can be accessed by those included in the request.

Rejected

You have rejected the request and your account cannot be access by those included in the request.

Pending

A new request that has not been Approved or Rejected. Your account cannot be access by those included in the request.

Expired

An active request that has passed its expiry date. Your account cannot be access by those included in the request.

Revoking Access

If you no longer want to provide access you can revoke a request.

To revoke a request:

  1. From the navigation menu, click Account > Access To My Account.

  2. Click on the request you want to revoke.

  3. Click Revoke access.

  4. In the Revoke Access pop-up window, click Revoke.

Was this article helpful?

1 out of 1 found this helpful

0 comments