Applies to: ConnectWise Manage
Security roles in ConnectWise PSA applied against a Member API control the level of access an API has to your system.
When creating a MemberAPI It is recommended to create a Security Role with the appropriate permissions needed for ConnectWise PSA to integrate with Wise-Sync.
How do I get there?
To configure ConnectWise PSA security roles, navigate inside ConnectWise PSA to System > Security Roles.
What do I do?
Select Add, to add a new ConnectWise Security Role
Enter API_Wise-Sync
Press Save
For more information on how to edit Security Role in ConnectWise, see FAQ - How do I edit a ConnectWise Security Role?
Then review and update each of the Security Role modules and permissions needed to sync transactions in ConnectWise PSA versions 2019.3 and newer as per the below table
The following Modules and Permissions all require 'All' for 'Inquire Level'.
| Module | Permission | |
|---|---|---|
| Companies | Company Maintenance | Wise-Sync requires permissions to query information from companies. |
| Contacts | Wise-Sync requires permission to query contacts from companies. | |
| Manage Attachments | Wise-Sync requires permissions to get attachments when syncing expenses. | |
| Team Members | Wise-Sync requires permissions to get Team Member details when syncing expenses. | |
| Finance | Accounting Interface | Select All for all levels (Add, Edit, Delete, Inquire). Wise-Sync needs to generate GL batches from ConnectWise for each financial record. This data is retrieved from the Accounting Interface. |
| Billing View Time | Wise-Sync requires permissions to view the billing option on time entry | |
| Company Finance | Wise-Sync requires the ability to see the Company Finance screen for companies within the system | |
| Invoicing | Select All for all levels (Add, Edit, Delete and Inquire). Wise-Sync requires this permission in order to retrieve tax codes when doing an Invoice Sync. Also required, when a payment is reversed. | |
| Reports | Wise-Sync requires permissions to query Reporting Views when performing most tasks in Wise-Sync. - All Reports | |
| Procurement | Inventory Adjustments | Wise-Sync requires permission to get inventory adjustments when syncing inventory. |
| Inventory Transfers | Wise-Sync requires permission to get inventory transfers when syncing inventory. | |
| Product Catalog | Wise-Sync requires permissions to query information about products in the product category when syncing procurement/inventory. | |
| Products | Wise-Sync requires permissions to query products for procurement/inventory. | |
| Purchase Orders | Wise-Sync requires permissions to query purchase orders when syncing procurement/inventory. | |
| Reports | Wise-Sync requires permissions to query Reporting Views when performing most tasks in Wise-Sync. - All Reports | |
| Projects | Reports | Wise-Sync requires permissions to query Reporting Views when performing most tasks in Wise-Sync. - All Reports |
| Sales | Reports | Wise-Sync requires permissions to query Reporting Views when performing most tasks in Wise-Sync. - All Reports |
| Service Desk | Service Tickets | Wise-Sync requires Service Desk > Service Tickets set to All for Inquire Level to be able to sync expenses. |
| Reports | Wise-Sync requires permissions to query Reporting Views when performing most tasks in Wise-Sync. - All Reports | |
| System | API Reports | Wise-Sync requires permissions to query API Reporting Views when performing most tasks in Wise-Sync. |
| Custom Menu Entry | Select All for all levels (Add, Edit, Delete, Inquire) | |
| Manage Hosted API | Select All for all levels (Add, Edit, Delete, Inquire) | |
| Member Maintenance | Wise-Sync requires permission to view existing members within the system when syncing expenses. | |
| My Company | Allows Wise-Sync to sync Territories, Structure Levels, etc. | |
| Security Role | Wise-Sync requires permission to review the settings for existing security roles | |
| System Reports | Allows the ability to review reports located in the System Category of the Reports module. - Security Roles Setup Report | |
| Table Setup (Customize) |
- General / Manage Hosted API - General / Portal Configuration (for Future Functionality) - General / Portal Security (for Future Functionality) - General Ledger / Accounting Package (for Future Functionality) - General Ledger / GL Accounts (for Future Functionality) - Inventory / Warehouse - Inventory / Warehouse Bin - Invoicing / Billing Terms - Invoicing / Tax Code | |
| Time & Expense | Expense Report Entry | Wise-Sync requires permissions to view reports located in the Expense Report Entry Category of the Reports Module when syncing expenses. |
| Reports | Wise-Sync requires permissions to view reports located in the Time Entry Category of the Reports Module when syncing expenses. |
Note:
- The Finance: Accounting Interface requires ALL for all levels (Add, Edit, Delete, Inquire).
- If users are currently logged in while the change is made and saved, they made need to log out and back in to see their elevated rights.
- For accounts on ConnectWise v2019.2 or older the only permission required to sync transactions is Finance: Accounting Interface select ALL for all levels (Add, Edit, Delete, Inquire).