Model Access Control (CRUD)

Restrict create, edit, delete, duplicate, import, export, and archive actions model-wise for selected users.

Field-Level Security

Make specific fields invisible, read-only, or required without touching existing model code.

Menu / Report / Action Hiding

Hide menus, reports, and server/window actions per user and company to keep interfaces clean and secure.

Button & Tab/Page Control

Hide sensitive form buttons and notebook pages in business documents based on access policies.

Domain-Based Record Access

Apply domain rules to limit which records a user can search, read, and interact with.

Step 1: Open Access Manager from Dashboard

Go to the Odoo dashboard and open Access Manager to start configuring access policies.

Step 2: Open Access Rights Manager List View

Open the Access Rights Manager list where you can create and manage all security rules.

Step 3: Create a New Rule

Click New and create a fresh rule record for the access behavior you want to enforce.

Step 4: Configure Rule Form Details

Fill Name, Users, Companies, and global restrictions, then configure required access options from the tabs below.

Step 5: Open User Access Settings

From Settings > Users, open the Admin (or selected user) form and go to the Access Manager Rights tab.

Step 6: Configure Field Access

Choose model fields and set them as Invisible, Read-Only, or Required according to policy.

Step 7: Enable Rights for Target User

Open the test user, go to Access Manager Rights, and enable Access Rights Manager for that target user.

Step 8: Configure Global Read-Only Mode

Enable Read-Only in global restrictions to block write operations for assigned users.

Step 9: Validate Read-Only Banner on Dashboard

Log in as the restricted user and verify the top read-only banner appears.

Step 10: Validate Read-Only on Transaction Page

Open a quotation/order and confirm the page remains in read-only mode.

Step 11: Configure Global Import/Export/Delete/Archive Controls

Use global toggles to disable Import, Export, Delete, and Archive/Unarchive actions system-wide.

Step 12: Validate Action Menu Cleanup

Open the Actions menu and verify blocked entries like Archive/Unarchive are no longer shown.

Step 13: Configure Model/Report/Action Access

Per model, define hidden reports/actions and operation-level restrictions (create/edit/delete/etc.).

Step 14: Validate Hidden Report/Print Option

In list view, verify hidden reports are removed from the Print dropdown.

Step 15: Review Product Cost Visibility

Open the record and review the Product Cost field visibility before/while applying the hide rule.

Step 16: Validate Field Hide Result

Compare before/after form view and confirm the selected field is hidden as expected.

Step 17: Configure Button/Tab Access

In Button/Tab Access, hide specific buttons and notebook tabs for selected models.

Step 18: Configure Domain Access

Add model-specific assignment domains to restrict records for the target user.

Step 19: Review Records Before Domain Filter

Before applying the domain rule, open the target list and review all records currently visible to the user.

Step 20: Validate Records After Domain Filter

After applying the domain rule, confirm only matching records remain visible in the list view.

Step 21: Configure Global or Model Chatter Hide

Use Hide Chatter globally or model-wise to remove chatter and activity sections where needed.

Step 22: Final Verification with Test User

Log in as the configured user and confirm all restrictions work together correctly end-to-end.

Step 23: Review Confirmation Before Restriction

Before applying confirmation restrictions, verify the normal confirmation behavior for the target user.

Step 24: Validate Confirmation After Restriction

After enabling restrictions, confirm the updated confirmation behavior is applied correctly.