Summary and recommendation
Baremetrics user management can be run manually, but complexity usually increases with role models, licensing gates, and offboarding dependencies. This guide gives the exact mechanics and where automation has the biggest impact.
Baremetrics is a subscription analytics platform built around MRR-based metrics, churn tracking, and revenue intelligence. It connects to billing sources like Stripe, Shopify, Braintree, Chargebee, and Recurly to surface data across products including Metrics, Recover, Cancellation Insights, and Flightpath. Pricing scales with MRR processed, starting at $29/month, with a free tier available for eligible startups.
No native SCIM provisioning, SSO integration, or IdP connection is documented for Baremetrics. Every app in a mature SaaS stack eventually requires identity lifecycle controls, and Baremetrics currently offers none of these through official channels. User management is handled entirely by hand inside the product.
Quick facts
| Admin console path | Settings → Team Members |
| Admin console URL | Official docs |
| SCIM available | No |
| SCIM tier required | Unknown |
| SSO prerequisite | No |
User types and roles
| Role | Permissions | Cannot do | Plan required | Seat cost | Watch out for |
|---|---|---|---|---|---|
| Owner | Full access to all settings, billing, integrations, data sources, and team management. Can invite and remove team members. | No per-seat cost; pricing is MRR-based. | Only one Owner per account. Ownership transfer process is not publicly documented. | ||
| Team Member | Access to analytics dashboards and metrics data. Exact permission scope relative to Owner is not granularly documented publicly. | Cannot manage billing, integrations, or invite/remove other team members based on available documentation. | No per-seat cost; pricing is MRR-based. | No documented sub-roles or permission tiers within the Team Member role. All invited users appear to receive the same access level. |
Permission model
- Model type: role-based
- Description: Baremetrics uses a simple two-level model: an Owner with full administrative control and Team Members with read/analytics access. No granular permission sets or custom roles are documented.
- Custom roles: No
- Custom roles plan: Not documented
- Granularity: Coarse. No documented ability to restrict access to specific metrics, data sources, or features on a per-user basis.
How to add users
- Log in as Owner.
- Navigate to Settings → Team Members (https://app.baremetrics.com/settings/team).
- Enter the invitee's email address in the invite field.
- Click 'Send Invite'.
- Invitee receives an email and must accept to gain access.
Required fields: Email address of invitee
Watch out for:
- Only the account Owner can invite team members.
- Invitee must accept the email invitation before access is granted.
- No documented limit on number of team members, but no explicit confirmation of unlimited seats either.
| Bulk option | Availability | Notes |
|---|---|---|
| CSV import | No | Not documented |
| Domain whitelisting | No | Automatic domain-based user add |
| IdP provisioning | No | Not documented |
How to remove or deactivate users
- Can delete users: Yes
- Delete/deactivate behavior: Team members can be removed from the account via the Team Members settings page. Removal revokes access immediately. No documented deactivation/suspension state separate from full removal.
- Log in as Owner.
- Navigate to Settings → Team Members (https://app.baremetrics.com/settings/team).
- Locate the team member to remove.
- Click the remove or revoke action next to their name.
- Confirm removal.
| Data impact | Behavior |
|---|---|
| Owned records | Baremetrics data is account-level, not user-level. Removing a team member does not delete any analytics data. |
| Shared content | Dashboards and metrics remain intact after a team member is removed. |
| Integrations | Integrations are account-level and are unaffected by team member removal. |
| License freed | No per-seat license to free; pricing is based on MRR processed. |
Watch out for:
- No documented deactivation or suspension option; removal is the only access revocation mechanism.
- Removed users lose access immediately upon removal.
- No documented audit log of team member actions available to verify post-removal.
License and seat management
| Seat type | Includes | Cost |
|---|---|---|
| Account access (team member) | Access to Baremetrics analytics dashboards and metrics for the account. | No per-seat cost. Account pricing is based on MRR processed through connected payment integrations. |
- Where to check usage: Settings → Team Members (https://app.baremetrics.com/settings/team) to view current team members.
- How to identify unused seats: No documented last-login or activity tracking per team member to identify inactive users.
- Billing notes: Baremetrics pricing is MRR-based, not per-seat. Plans scale with the volume of MRR processed. Adding or removing team members has no direct billing impact.
The cost of manual management
Because Baremetrics has no documented role-based access control or granular permission model, IT and ops teams have no reliable way to audit who has access or what they can see. Onboarding a new team member means navigating an undocumented admin flow with no confirmation of what access is actually granted.
Offboarding carries real risk: there is no deactivation step documented, no automated revocation, and no seat-based billing model to flag orphaned accounts. Every departure requires a manual check to confirm access has been removed. Without a structured permission model, verifying the blast radius of any given account is guesswork.
What IT admins are saying
Community feedback consistently flags the absence of enterprise identity features as a gap. Reviewers note that SSO, SCIM, and IdP integration are not available, which limits Baremetrics' fit for teams with compliance or access governance requirements.
Users also raise concerns about pricing relative to feature depth, particularly for teams that need more than analytics dashboards. The lack of publicly documented RBAC or granular permissions makes it difficult to evaluate team management capabilities before committing to a plan.
Common complaints:
- No enterprise identity features such as SSO, SCIM provisioning, or IdP integration documented.
- Considered expensive by some users relative to feature set, particularly as MRR scales.
- Lack of publicly documented granular role-based access control makes it difficult to assess team management capabilities before purchasing.
- No SCIM or automated provisioning support confirmed, requiring fully manual user management.
- No documented per-user activity tracking or audit logs, making it difficult to identify inactive team members.
- Only a single Owner role with full admin rights; no documented way to delegate specific administrative functions to other users.
The decision
Baremetrics is a strong fit for small SaaS teams that need fast, clear subscription analytics and are already using Stripe or a supported billing source. It is not a fit for organizations that require centralized identity management, automated provisioning, or audit-ready access controls.
If your IT or security team needs to enforce least-privilege access or demonstrate offboarding completeness, Baremetrics' current feature set will require manual compensating controls. Factor that operational overhead into any evaluation.
Bottom line
Baremetrics delivers genuine value as a subscription analytics layer for MRR-driven businesses, but it carries meaningful IT overhead for any team that needs structured access management.
There is no SCIM, no SSO, no documented permission model, and no seat-based billing to help track who holds access.
Every app in your stack that lacks automated provisioning adds to the manual burden on IT and ops - and Baremetrics, in its current form, is one of those apps.
Teams with light compliance requirements and a small, stable user base will absorb that cost easily; teams with stricter governance needs should plan for the gap explicitly.
Automate Baremetrics workflows without one-off scripts
Stitchflow builds and maintains end-to-end IT automation across your SaaS stack, including apps without APIs. Built for exactly how your company works, with human approvals where they matter.
