Document360 User Management Guide

• Model type: role-based
• Description: Document360 uses a fixed set of built-in roles for team (contributor) accounts: Owner, Admin, Editor, Draft Writer, and Viewer. Roles are assigned per project. There is no custom role builder; permissions are tied to the predefined role tiers. Category-level access restrictions can be applied on top of roles for Editors and Draft Writers, providing some granularity below the role level.
• Custom roles: No
• Custom roles plan: Not documented
• Granularity: Role-level permissions are fixed. Category-level visibility/access restrictions can be layered on top of Editor and Draft Writer roles. No field-level or article-level permission granularity beyond category access.

1. Log in to the Document360 portal at app.document360.io.
2. Navigate to Settings → Users & Security → Team Accounts.
3. Click 'Invite Team Member'.
4. Enter the invitee's email address.
5. Select the appropriate role (Admin, Editor, Draft Writer, or Viewer).
6. Optionally restrict category access if the role is Editor or Draft Writer.
7. Click 'Send Invite'. The invitee receives an email invitation to join the project.

Required fields: Email address, Role selection

Watch out for:

• Invitations expire; if the invitee does not accept within the expiry window, a new invitation must be sent.
• The invitee must create a Document360 account (or log in via SSO) to accept the invitation.
• Adding a team member consumes a seat against the plan's team-account quota. Exceeding the quota requires a plan upgrade.
• SSO auto-registration (if configured) can automatically create team accounts when users authenticate via IDP, which may consume seats without explicit admin action.

• Can delete users: Yes
• Delete/deactivate behavior: Document360 allows removing (deleting) a team member from a project. The removed user loses access to the project immediately. Content authored by the removed user is retained in the project and is not deleted. There is no documented 'deactivate' (suspend without removal) state for team accounts; removal is the primary offboarding action.

1. Log in to app.document360.io.
2. Navigate to Settings → Users & Security → Team Accounts.
3. Locate the team member to remove.
4. Click the options menu (three dots or similar) next to the user.
5. Select 'Remove' or 'Delete' to revoke their project access.
6. Confirm the removal when prompted.

Watch out for:

• There is no 'suspend' or 'deactivate' state; removal is permanent for that project. The user can be re-invited later.
• If the removed user was the sole Admin (and not the Owner), the Owner must reassign admin duties before or after removal.
• The Owner account cannot be removed by other Admins; only the Owner can transfer or relinquish ownership.
• SSO-provisioned users who are removed from the project can still authenticate via SSO; auto-registration settings may re-create their account on next login if not also disabled in the IDP.

• Where to check usage: Settings → Users & Security → Team Accounts (shows current team member count vs. plan quota); Settings → Users & Security → Readers (shows reader account count vs. quota).
• How to identify unused seats: No built-in 'last login' or activity report is prominently documented for team accounts in the help center. Admins must manually review the team member list and cross-reference with known activity. Reader account last-access data may be available in analytics depending on plan tier.
• Billing notes: Document360 uses custom pricing with no publicly listed per-seat rates. Plan quotas for team accounts and reader accounts differ by tier. Exceeding seat quotas requires contacting Document360 sales for an upgrade. The 14-day free trial includes full feature access. A startup program offers 6 months free on Business/Enterprise plans followed by 50% off for 6 months.

Document360 uses custom pricing with no publicly listed per-seat rates, so seat costs are opaque until you engage sales. SSO auto-registration compounds this: new users authenticating via your IdP can be created without explicit admin approval, consuming quota without a visible trigger.

There is no built-in last-login or activity report for team accounts, so identifying unused seats requires manually cross-referencing the member list against known activity.

The most consistent friction reported by Document360 admins centers on three gaps.

First, the absence of a suspend or deactivate state means offboarding a contractor or employee on leave requires full removal - there is no way to freeze access temporarily without losing the user record.

Second, SSO auto-registration silently creates team accounts on first IdP login, which surprises admins when seat counts rise unexpectedly. Third, there is no bulk CSV import for team members, making large-scale onboarding a one-invite-at-a-time process.

Common complaints:

• Users report that there is no granular custom role builder; permissions are locked to the five predefined roles, which can be too coarse for larger teams needing intermediate permission levels.
• The lack of a 'suspend/deactivate' state (as opposed to full removal) is noted as a gap when temporarily offboarding contractors or employees on leave.
• SSO auto-registration can silently consume team-account seats when new users authenticate via IDP without explicit admin approval, leading to unexpected seat overages.
• No bulk CSV import for team members is available, making large-scale onboarding manual and time-consuming.
• Pricing opacity (no public per-seat rates) makes it difficult to forecast costs when scaling team size.
• Reader seat limits and team-account seat limits are tracked separately, causing confusion about which quota applies when adding different user types.

Manual management is workable for small, stable teams where the contributor roster changes infrequently. The five-role model covers most knowledge base team structures, and category-level restrictions add enough granularity for most editorial workflows.

The calculus shifts when your team scales or turns over contractors regularly - every app without automated deprovisioning demands the same manual discipline, and Document360's lack of a suspend state and activity reporting makes it harder than most to maintain a clean, auditable access record without dedicated operational overhead.

Bottom line

Document360's manual user management is straightforward for day-to-day adds and removes, but the combination of opaque custom pricing, no suspend state, no bulk import, and silent SSO seat creation creates compounding overhead as team size or turnover increases.

Every app without automated provisioning demands the same manual discipline; Document360 is no exception, and the lack of a last-login signal makes it harder than most to catch access drift before it becomes a billing or security issue.