SinglePoint User Management gives the Company Administrator full control over every user inside the commercial relationship. Delegated provisioning, five role templates, per-account permissions, per-product permissions, dual-control thresholds and a 7-year audit log wrap every privileged action in an evidence trail aligned with OCC record-keeping expectations.
Initiator, Approver, Auditor, Administrator and Read-Only templates accelerate onboarding to minutes. Token assignment — hardware and software — is handled inside User Management with no phone call to U.S. Bank. Unlimited users, one unified access policy, one dashboard.
Sign In to SinglePoint Security Controls
Every commercial relationship has at least two Company Administrators. The role carries the highest privilege inside SinglePoint User Management — the ability to create, modify and de-provision users.
Five canonical roles, each clonable and customisable. Templates eliminate permission-by-permission configuration and standardise access patterns across the enterprise.
Creates wires, ACH batches and bill payments. Cannot approve or release. Typical assignment — accounts payable clerks, payroll operators, treasury analysts. Per-account and per-product scoping restricts visibility to the accounts they service.
Reviews and approves initiated payments. Cannot create, cannot release without second approval above dual-control thresholds. Typical assignment — AP supervisors, treasury managers, line-of-business controllers.
Full User Management authority — create, modify, de-provision users. Cannot initiate payments by default (separation of duties). Typical assignment — two named Company Administrators plus a delegated Deputy Administrator for continuity.
Auditor sees every transaction, permission change and sign-in event — can export but cannot modify. Read-Only sees balances and transactions but cannot export or modify. Typical assignments — internal audit, external audit, CFO and executive observers.
The canonical permission matrix across the five SinglePoint role templates. Per-account and per-product scoping tighten these defaults further.
| Role | Initiate | Approve | Release | Reports |
|---|---|---|---|---|
| Initiator | Yes | No | No | View only |
| Approver | No | Yes | With dual-control | View and export |
| Administrator | No (default) | No (default) | No (default) | Full access |
| Auditor | No | No | No | Full access + export |
| Read-Only | No | No | No | View only |
The Company Administrator configures dollar thresholds per product. Wires over $50,000 commonly require a second named approver. ACH batches over $250,000 commonly require a second approver. Thresholds can be tighter for unfamiliar beneficiaries, international destinations or after-hours submissions. SinglePoint enforces the configured thresholds without exception — no override, no emergency bypass.
Hardware tokens and the U.S. Bank Token app are assigned from inside User Management. Hardware tokens ship by trackable courier; software tokens activate via enrolment code. Token rotation, replacement and decommissioning all flow through the same User Management workspace with audit trail.
Per OCC guidance on authentication for online banking, SinglePoint layers MFA, device binding and geo-pattern detection behind every privileged session.
Every User Management event is logged for 7 years with cryptographic manifest. Provisioning, de-provisioning, permission change, dual-control approval, token assignment, unlock — each captured with timestamp, IP address, device fingerprint and before/after field state. The audit export is admissible for SOX Section 404, SOC 1/2 and internal audit review.
User Management anchors the access control stack across every other SinglePoint service.
Commercial Banking Portal — Topic Cluster