When you create a role in the Control Panel, you will select the Rights Granted to users assigned that role. These rights are also known as role permissions.

Role permissions are divided into categories. You can assign a role all of the rights within a category or select specific rights from multiple categories. By default, only the Account Admin role will have all of the role permissions enabled.

Rights Granted

Permission Category Rights Granted
Create Sales Transactions User can manually create transactions using new or vaulted payment methods in the Control Panel. Learn more.
Credit Previous Transactions (Refunds) Transactions User can issue refunds for Settling or Settled transactions in the Control Panel.
Submit Sales for Settlement Transactions User can manually create new transactions and submit for settlement any Authorized transactions in the Control Panel.
Manage Escrow Transactions Users with a Braintree Marketplace account can decide when to release funds that have been held in escrow.
Void Transactions Transactions User can void transactions that are Authorized or Submitted for Settlement in the Control Panel.
Download Transactions with Masked Payment Data Transactions User can run transaction searches via the API and download reports from the Control Panel.
Manage Customers and Payment Methods (Add/Edit/Delete) Customer Management User can create new customers in the Vault, update vaulted customer information, and verify vaulted credit cards in the Control Panel.
Download Vault Records with Masked Payment Data Customer Management User can run customer searches via the API and export vault records from the Control Panel.
Create, Run, and Download Reports Reporting User can create, run, and download various reports via the Control Panel. This permission does not grant the user access to statements.
View Dashboard Graphs Reporting User can view the graphs on the main Dashboard of the Control Panel.
Add/Edit Processing Options (including AVS/CVV) Processing and Security Options User can make changes within the Processing Options page in the Control Panel, including enabling specific payment methods and configuring Basic Fraud Tools.
Edit IP Restrictions Processing and Security Options User can restrict which IP addresses can take certain actions via the API. Learn more about Control Panel whitelisting.
Edit Fraud Protection Level Processing and Security Options User can make changes to the Advanced Fraud Tools enabled for your account.
Manage Users (Add/Edit/Delete/Reset Password) User Management User can create new users, edit existing users, and reset passwords for users logging into the Control Panel. Learn more.
Manage Roles (Add/Edit/Delete) User Management User can create new roles, assign and edit role permissions, and delete roles from the Control Panel. Learn more.
Manage Plans, Addons and Discounts (Add/Edit/Delete) Recurring Billing User can create new recurring billing plans, edit existing plans, and delete plans from the Control Panel. Learn more.
Manage Subscriptions (Add/Edit/Delete) Recurring Billing User can create new subscriptions, edit existing subscriptions, and cancel active subscriptions in the Control Panel. Learn more. This permission is limited to the Control Panel; for API subscription permissions see the Download Subscription Records permission below.
Manage Recurring Email Notifications (Add/Edit/Delete) Recurring Billing User can configure email notifications for recurring billing events. Learn more.
Download Subscription Records Recurring Billing User can run subscription searches via the API, search subscriptions in the Control Panel, and download search results as a CSV file.
View, manage and contest disputes Dispute Management User can view, manage, and dispute chargebacks in the Control Panel.
Manage Webhooks (Add/Edit/Delete) Webhooks User can create and manage webhooks within the Control Panel. Learn more.
View Agreements My Account User can view your account’s Agreements within the Control Panel.
View Statements Statements User can view statements for your account within the Control Panel. Statement availability, timing, and delivery method will vary depending on your account setup.
Manage Merchant Accounts Merchant Accounts Users in the sandbox can create new test merchant accounts. In production, users with a Braintree Marketplace account can onboard sub-merchants and manage sub-merchant accounts. Learn more.
Upload business documents Business Management User can securely upload business documents to the Control Panel.
Manage OAuth Applications (Add/Edit/Disable) OAuth Applications User can create and manager your OAuth application in the Control Panel. This permission is only available for those merchants participating in the Braintree Auth beta.
View Connected OAuth Applications Connected OAuth Applications User can view the ecommerce platforms and merchant service providers connected to your OAuth application. This permission is only available for those merchants participating in the Braintree Auth beta.
Manage Connected OAuth Applications (Authorize/Deauthorize) Connected OAuth Applications User can manage the ecommerce platforms and merchant service providers connected to your OAuth application. This permission is only available for those merchants participating in the Braintree Auth beta.

Still have questions?

If you can’t find an answer, contact our Support team.


← Back to Previous Page