> For clean Markdown of any page, append .md to the page URL. > For a complete documentation index, see https://amer.developers.trustly.com/llms.txt. > For full documentation content, see https://amer.developers.trustly.com/llms-full.txt. > For AI client integration (Claude Code, Cursor, etc.), connect to the MCP server at https://amer.developers.trustly.com/_mcp/server. # Manage users Trustly assigns a Merchant Administrator to the Merchant Portal. This administrator manages and assigns user access. To help maintain data security, Trustly recommends that you only grant access to users who have an official company domain email address. Do not use personal email addresses. Trustly may periodically provide the merchant administrator a list of the merchant's users who have access to the Merchant Portal. We may request the merchant administrator to attest that the list contains only authorized users of the Merchant Portal. The merchant administrator must respond to any such requests within 30 days to ensure uninterrupted access to the Merchant Portal. ## Available roles The following table lists the roles available to merchants and the access each role provides. | Role | Description | | :--------------------- | :------------------------------------------------------------------ | | Merchant Admin | Has full access to the Merchant Portal (can add users). | | Merchant Full | Has full access to the Merchant Portal, except for user management. | | Merchant Read Only | Can only view data in the Merchant Portal (cannot edit). | | Merchant Approve Trxns | A limited merchant user role that only approves transactions. | | Merchant Refund Trxns | A limited merchant user role that only refunds transactions. | | Merchant Cancel Trxns | A limited merchant user role that only cancels transactions. | ## Authentication types The merchant's Merchant Portal authorization type determines their authentication method. The following methods are supported: * **Standard**: General login information that Trustly creates and sends to users to log in. * **OIDC** (OpenID Connect): Single sign-on capabilities through an Okta OIDC configuration with the merchant’s Okta instance. * **SAML** (Security Assertion Markup Language): Single sign-on capabilities through an Okta SAML configuration with the merchant’s Okta instance. ### Manage user access To prevent a user from accessing the Merchant Portal, select **Disable** on the **User Management** page. To reactivate a user, click **Reset Password** on the **User Management** page. The user receives an email with instructions to reactivate their account.