| Availability |
Odoo Online
Odoo.sh
On Premise
|
| Odoo Apps Dependencies |
Discuss (mail)
|
| Lines of code | 1273 |
| Technical Name |
cerevantix_access_management |
| License | OPL-1 |
| Website | https://www.cerevantix.com |
| Versions | 17.0 18.0 19.0 |
Access control that is safe to change
Restrict menus, models, fields, exports and chatter for any user from one no-code dashboard — and preview exactly what changes before you save. Enforced on the server, on top of Odoo's own access rights.
Native Odoo access is powerful but scattered across security groups, model access rights and record rules in developer mode. Non-technical admins over-provision users, and a wrong toggle is only discovered when someone hits an "Access Denied" error.
One dashboard of reusable Access Profiles you assign to users. An impact preview shows what each user keeps and loses before you commit, conflicts are flagged inline, and self-lockout protection keeps you from locking yourself — or the super-user — out.
Everything you need to lock down access
Every capability below is implemented in the module.
Central Access Profiles
Build reusable, named permission sets and assign them to any set of users. Combine several profiles per user, scope one to a single company, or give it an activation and expiry date for temporary staff.
Per-Model CRUD Control
Block Create, View, Edit or Delete on any model with a simple tick. Rules are enforced server-side and only ever narrow what Odoo already allows.
Menu & Submenu Hiding
Hide navigation entries per profile so users only see what they use. Hiding a parent menu automatically hides every menu beneath it.
Field-Level Control
Set individual fields to read-only or hidden per profile to protect sensitive data such as salary, cost or margin without hiding the whole record.
Read-Only & Data Locks
Make a profile read-only with one switch, and separately block export, import, duplicate and archive to stop data exfiltration and accidental bulk changes.
Developer Mode & Chatter
Keep non-technical users out of debug mode, and separately restrict Send Message, Log Note and Schedule Activity so messaging matches each role.
Impact Preview Before Save
Open a profile and see a clear list of exactly which capabilities and models the affected users keep or lose — before anyone is restricted. No more surprise "Access Denied" support tickets.
Conflict Detection & Safety
When two profiles give the same user contradictory rules, the conflict is flagged inline. Self-lockout protection refuses any change that would strip the super-user or your own ability to manage access.
Templates, Bulk & Audit
Start from ready-made role templates, assign or revoke a profile across many users at once, offboard leavers in one action, and review a full audit trail of every access change — who, what and when.
How it works
Create a Profile
Pick capabilities, models, menus and fields — or start from a template.
Preview the Impact
Check exactly what users keep and lose before anyone is affected.
Assign to Users
Apply individually or in bulk, with an optional activation window.
Stay in Control
Watch for conflicts, review the audit trail, and offboard in one click.
See it in action
Real screens from the module, captured on Odoo 17.
Every access profile in one list, showing read-only status, assigned users and rule counts at a glance.
The Capabilities tab: read-only, export, import, duplicate, archive, developer mode and chatter controls as plain-language switches.
Model rules: tick View, Create, Edit or Delete to block that operation on any model — leave a box unticked to keep Odoo's normal access.
Field rules make individual fields read-only or hidden for the profile's users, protecting sensitive data field by field.
The impact preview lists every capability the affected users keep or lose, colour-coded, before the profile is enforced.
When another profile restricts the same model differently for a shared user, a conflict banner explains the clash and which rule wins.
Ready-made role templates — such as Read-Only Auditor and No Data Export — give you an editable starting point in a couple of clicks.
Assign or revoke a profile across many users at once, or offboard a leaver by removing all of their profiles in a single action.
A full audit trail records every profile creation, update and assignment — who changed what and when — for compliance reviews.
Each user gains an Access Profiles tab, so you can see and adjust exactly which profiles apply to them from the standard user form.
Frequently asked
Does it replace Odoo's native security?
No. Every rule is enforced on the server on top of Odoo's own access rights and record rules, and only ever narrows access — it never grants more than a user already has.
Can a wrong rule lock me out?
Self-lockout protection refuses to save any profile that would restrict the system super-user, or that would remove your own ability to manage access profiles — so a mistake stays recoverable.
Can I see the effect before applying it?
Yes. The impact preview shows a clear list of exactly which capabilities and models the affected users keep and lose before you commit the change.
Does it work for many users at once?
Yes. A bulk wizard assigns or revokes a profile across many users in one step, and a single offboarding action removes every profile from users who leave.
Get in Touch
Have questions or need customization? Every purchase includes 30 days of free support — we are here to help.
Visit Our Website
www.cerevantix.comExplore our apps, services, and portfolio.
Explore our other apps
A growing suite of Odoo apps.
Empowering growth through technology.
Safe, no-code access management for Odoo — restrict, preview and audit every permission change from one dashboard.
| Availability |
Odoo Online
Odoo.sh
On Premise
|
| Odoo Apps Dependencies |
Discuss (mail)
|
| Lines of code | 1273 |
| Technical Name |
cerevantix_access_management |
| License | OPL-1 |
| Website | https://www.cerevantix.com |
Odoo Proprietary License v1.0 This software and associated files (the "Software") may only be used (executed, modified, executed after modifications) if you have purchased a valid license from the authors, typically via Odoo Apps, or if you have received a written agreement from the authors of the Software (see the COPYRIGHT file). You may develop Odoo modules that use the Software as a library (typically by depending on it, importing it and using its resources), but without copying any source code or material from the Software. You may distribute those modules under the license of your choice, provided that this license is compatible with the terms of the Odoo Proprietary License (For example: LGPL, MIT, or proprietary licenses similar to this one). It is forbidden to publish, distribute, sublicense, or sell copies of the Software or modified copies of the Software. The above copyright notice and this permission notice must be included in all copies or substantial portions of the Software. THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.
Please log in to comment on this module