Skip to content
  • There are no suggestions because the search field is empty.

How to add an Internal Auditor 

Managing Internal Auditor Access in Scribe Accounts

Managing access to your councilโ€™s financial and administrative data is a critical responsibility. Scribe Accounts makes this process straightforward, with built-in user management tools that allow administrators to control access securely and efficiently.

This guide explains how to:

  • Add a new Internal Auditor

  • Assign Read-only permissions

  • Set access duration (including temporary access)

  • Remove or revoke user access

โš ๏ธ Important: User management must only be carried out by authorised administrators. This ensures proper access control and supports your council's compliance with Assertion 10 of the Practitionersโ€™ Guide 2025 IT Poilcy Requirement and good information security practices.

 

๐Ÿ‘ฅ Who Can Use This Guide

This process applies to:

  • Clerks

  • Responsible Financial Officers (RFOs)

  • Other authorised council administrators

You must have admin-level access to perform these steps. (Council: Users/Editor Permissions)

How to Add an Internal Auditor

  • Log in to Scribe Accounts with your administrator credentials.

  • Navigate to Account โ†’ Users.

  • Review the existing list to ensure the user/internal auditor doesnโ€™t already exist.

  • Click the Plus (+) button or Edit โ†’ Add Record.

  • Complete the Internal Auditor details:

    • User Name: Enter the full name

    • Email Address: Enter Auditor's email address

  • Set the Internal Auditor's access duration:

    • To give unlimited access, leave the Unlimited box ticked

    • For temporary access, untick Unlimited and enter an Expiry Date

  • Set the appropriate permissions for Accounts module:

    • Click Edit Permissions

    • Select Read-Only for all accounts module

    • Click Done once all permissions are set

      image8.png

Please note "Bulk" selecting None will either remove the users access from the system or will not add the user if they are new.

 

  • Click Add to create the user as an Internal Auditor.

๐Ÿ“ง An invitation email will automatically be sent to the Internal Auditor. They must follow the link to activate their account and set a password.

  • The Internal Auditor will appear with the status Pending until after the auditor has logged in.

  • Once the Internal Auditor accepts the invitation and creates a password, refresh the page. Their status will change to Authorised.

  • Please note if the status doesn't change to Authorised, contact us at info@scribeaccounts.com so we can refresh the sign-in on our side.

โœ… Double-check their access and permissions are correct.

๐Ÿ›‘ How to Revoke or Remove AN INTERNAL AUDITOR

From the same menu (three dots next to the Internal Auditor's name), you can also:

  • Revoke Access โ€“ immediately disable their login access

  • Remove Internal Auditor โ€“ delete the Internal Auditor from the system

๐Ÿ“ Notes & Best Practice

  • Review users regularly, especially at the end of the auditing period.

  • Set expiry dates for temporary staff or contractors

  • Ensure permissions match the internal auditorโ€™s roleโ€”use Read Only for auditors.

  • In line with Assertion 10, (Paragraph 1.54) Always follow your council's information security policy when managing Internal Auditors.