If you are a principal authority or authorisation administrator you can create authorisations, including assigning levels of access, for other users. They become authorised users and can act on behalf of your business when using government online services.
If you are not a principal authority or an authorisation administrator see Authorised users for more information.
On this page:
- Before you start
- Authorising tax professionals
- Levels of access
- How to add a new authorisation
- Authorisation codes
Check with the user you are authorising that:
- they have set up their digital identity, such as myGovID
- their full legal name matches the name used to set up their digital identity
- their email address can only be accessed by the them. It does not need to be the address they used to set up their digital identity.
If your business appoints another business to manage your tax affairs such as a tax professional practice, you will use the ATO’s Access Manager to establish the authorisation. Meaning, you don’t authorise the practice or tax professional in RAM and they don’t use RAM to authorise you.
- Access Manager on the ATO website.
For each government online service, you can authorise users with either:
- Full access to select government services.
- Custom access to select government online services (currently limited to ATO services).
- No access to select government services.
- Select Manage authorisations.
- Select the business you would like to add an authorisation to.
- Click Add new user.
You will then complete the following labels:
- Representative details – including the user’s name and email address
- Authorisation details – select Yes or No if you want the user to become an authorisation administrator or a machine credential administrator (MCA). Enter a start and end date for the authorisation, it cannot be back dated or left blank. Alternatively, select no end date
- Agency Access – select the level of access (Full, Custom or None)
- Summary – review details and accept the Declaration
- Customise access – if custom access is given you will be redirected to the ATO’s Access Manager to set permissions
An authorisation and request will be sent to the user to accept. The authorisation will remain pending until the user accepts the request using their authorisation code.
When you add a new authorisation, an authorisation code is automatically emailed to the user to accept or decline. The code is valid for seven days.
Re-issuing authorisation codes
If an authorisation code has expired or is not working, the principal authority or authorisation administrator will need to re-issue a code. To do this:
- select Manage authorisations
- select the business name associated with the user
- click View next to the user’s name which will have a pending status
- click Re-issue a code under the authorisation code details
- a confirmation message will appear advising the code has been re-issued, click Continue.
- Authorised users for information about receiving authorisation codes.