Configure Role Based Access Control
Last updated: Oct 9th, 9:17pm
PayPal's Role-Based Access Control (RBAC) system enables partners to configure granular, component-level permissions for their merchants' experiences. Moving beyond traditional page-level access control, RBAC allows partners to define specific roles with customized permission sets across six key functional areas:
- Transaction management
- Reporting
- Analytics management
- Money movement
- Disputes management
- Marketing
Partners can create organization-specific roles such as PARTNER_MANAGED_US_ORG and assign fine-grained permissions within each category. For example, partners can enable transaction viewing while restricting refund capabilities, or provide access to specific report types while hiding others. The merchant experience renders dynamically based on the configured permissions.
The platform automatically handles role assignments during PayPal business account creation and maps existing page-level permissions during migration.
The RBAC implementation supports backward compatibility with existing APIs while providing new role management endpoints for enhanced permission control.
Contact your account manager to manage configurations and select individual entitlements for each role.