Admin Training Module 1: Users & Rights Management

Before creating users, it helps to understand how Tribe structures access. There are two key concepts.

Roles define what a user can do: which menus they can access, which records they can view or edit, and which configuration settings are available to them. Every user must be assigned at least one role.

Teams define what a user can see. If your organisation works with separate departments or regions, teams allow you to shield data between groups so that each team only sees its own records.

Read: How Do I Manage Rights And Roles In Tribe CRM?

Read: How Do I Use Teams In Tribe CRM?

Watch: Roles and Teams Explained

When a new colleague joins your organisation, you need to invite them to Tribe, assign the right role, optionally add them to a team, and verify the result. The complete walkthrough for this process is covered in a dedicated article.

Before you start, always check whether you have an available licence via your organisation logo → Subscriptions and Licenses. And when a colleague leaves, never delete their user account. Deactivating the account prevents login while preserving the full history of their activities in Tribe.

Read: Onboarding a New User

Read: How Do I Invite Colleagues To Tribe?

Read: How Do I Temporarily Block Users For Maintenance?

Teams are optional but valuable for organisations that need to control data visibility between groups. To set up a team, navigate to Configuration, then select Teams, create a new team, activate data shielding, and choose whether to shield activities only or both relationships and activities. You then add members to complete the setup.

Read: How Do I Use Teams In Tribe CRM?

Configuring users and roles is not complete without securing how they log in. The settings below apply to your entire environment. Set them up once and they protect every user automatically.

Adds a second verification step at login and significantly reduces the risk of unauthorised access, even if a password is compromised. Enabling 2FA for all users is strongly recommended.

Read: How Do I Activate Two-Factor Authentication In Tribe CRM?

Lets you set minimum requirements for password length and complexity, ensuring users cannot set weak passwords that put your CRM data at risk.

Read: How Do I Adjust The Password Policy In Tribe CRM?

Are advanced settings for organisations using Microsoft Azure AD. With SSO, users log in with their existing company credentials. With SCIM, user provisioning is fully automated: creating, updating, or deactivating a user in Azure AD automatically syncs to Tribe, removing the need to manage users in two places. SSO and SCIM are typically set up by an IT administrator rather than a functional CRM administrator. If your organisation uses Azure AD, involve your IT team before configuring these settings.

Read: How Do I Set Up Single Sign-On With Microsoft Azure AD?

Read: How Do I Link Tribe CRM With Azure AD Using SCIM?

This module covers the foundation of Tribe administration: how roles and teams control access and visibility, how to create and manage user accounts, how to set up teams, and how to secure your environment with authentication and password settings. With these in place, every user in your organisation has exactly the access they need.