Manage authorisations

If you’re a principal authority or authorisation administrator, Relationship Authorisation Manager (RAM) allows you to manage who can act on behalf of your business with government online services.

To assist in managing existing authorisations, you can:

  • apply filters such as ‘status’ or ‘authorisation type’ to refine your list of authorisations or when searching for particular authorisations
  • export the details of up to 1,000 users you’ve authorised into a spreadsheet format (CSV file) from RAM.

Alternatively, follow these steps in the sections below:

How to edit an authorisation

To edit an authorisation:

  1. Log in to RAM.
  2. Select View or manage authorisations, machine credentials and cloud software notifications.
  3. Select the relevant business associated with the user.
  4. Select Edit next to the authorised user.
  5. The edits you can make depend on the status of the authorisation:
    1. Pending – You can edit the user’s name, email address, authorisation start date and end date, authorisation administrator or machine credential administrator status, and agency access.
    2. Accepted (with a future start date) – You can edit the start date, end date, authorisation administrator status, machine credential administrator status and agency Access.
    3. Access – You can manage access for each agency or service. If an agency supports service selection, a ‘Select services’ prompt is displayed next to the agency name. Otherwise, only agency checkboxes will be active. Select View services to expand the list of service checkboxes.
    4. Active – You can edit the end date, authorisation administrator or machine credential administrator status and agency access.
  6. Select Continue.
  7. Accept the declaration and select Submit.
  8. A confirmation message will appear, select Continue.

To change the authorisation of a Basic user to a Standard user, the authorisation needs to be removed first. Once removed, create a new authorisation for the representative.

Watch:

How to remove an authorisation

To remove an authorisation:

  1. Log in to RAM.
  2. Select View or manage authorisations, machine credentials and cloud software notifications.
  3. Select the relevant business associated with the user.
  4. Select Remove against the authorised user.
  5. Select Yes to confirm.

You can't reinstate an authorisation after it’s removed. If required, you’ll need to set up a new authorisation.

If required, the following users can remove their own authorisation:

  • Authorised user
  • Authorisation administrator
  • Basic user
  • Responsible authority
  • Government representative
  • Indirect associate.

The authorisation of principal authorities who linked online cannot be removed, the authorisation remains unless they’re removed as an eligible individual associate of the business in the ABR.

How to view or export the business History

History displays the authorisation and machine credential activities for a business.

This can include the:

  • date
  • credential name
  • action
  • actioned by
  • actioned by role
  • representative name
  • authorisation type
  • authorisation status
  • machine credential administrator
  • current business email address
  • start date
  • end date
  • agency access.

To export the business History:

  1. Log in to RAM.
  2. Select View or manage authorisations, machine credentials and cloud software notifications.
  3. Select the relevant business you want to export the history for.
  4. Select History to view the business history log.
  5. Select the Authorisations or Machine credentials tab.
  6. Select Export, then select Yes to export a report.

You can refine your search using the 'actioned date' or 'actioned by' filters. Additionally, the ‘Filter by access’ option allows you to choose between ‘access’, ‘partial access’, or ‘no access’.

How to export the authorisation details

The authorisation details displays a summary of all current and former authorisations for a business.

The exported authorisation details includes:

  • representative name
  • authorisation type
  • authorisation status
  • machine credential administrator
  • current business email address
  • start date
  • end date
  • agency access.

To export the authorisation details for the business:

  1. Log in to RAM.
  2. Select View or manage authorisations, machine credentials and cloud software notifications.
  3. Select the relevant business you want to export the details for.
  4. Select Export, then select Yes to export a report.

You can export up to 1,000 records at once. If there are more than 1,000 records, you’ll need to export multiple reports. You can use the search and filter options to refine the list of authorisations.

How to renew a Basic authorisation

Basic users can only be authorised for up to 12 months. Before expiry, you’ll receive reminders (to the email address you used to link to the business and in RAM) to renew the authorisation.

The authorisation can be renewed from 40 days before it expires.

If a Basic user has customised permissions, for example, in the ATO’s Access Manager, these will be removed when you renew their authorisation. We recommend you note these permissions before you renew, to help you set them up again afterwards.

To renew a single Basic authorisation:

  1. Log in to RAM.
  2. Select View or manage authorisations, machine credentials and cloud software notifications.
  3. Select the relevant business you want to renew the authorisation for.
  4. Select Renew next to the person’s name.
  5. Complete the renewal details, accept the declaration and select Submit.
  6. You’ll receive a notification to confirm the authorisation has been successfully renewed in RAM.

To renew multiple Basic authorisations:

  1. Log in to RAM.
  2. Select View or manage authorisations, machine credentials and cloud software notifications.
  3. Select the relevant business.
  4. Select Renew in the notification box at the top of the screen.
  5. Select all or choose specific authorisations to renew.
  6. Complete the renewal details for each, accept the declaration and select Submit.
  7. You’ll receive a RAM renewal outcome summary – including any unsuccessful renewals.

If a Basic authorisation expires before it’s renewed, you’ll need to create a new authorisation for that user. They may need to complete proof of identity requirements again.

Watch:

 

How to renew your business authorisation (primary person)

If you linked a business as a primary person, your authorisation type displays as government representative, indirect associate or responsible authority and is valid for up to 12 months.

Before expiry, you’ll receive reminders (to the email address you used to link to the business and in RAM) to renew.

Your authorisation can be renewed from 40 days before it expires.

To renew a single business authorisation:

  1. Log in to RAM.
  2. Select View or manage authorisations, machine credentials and cloud software notifications.
  3. Select Renew next to the relevant business.
  4. Review the renewal details – you can choose an earlier end date if required.
  5. Accept the declaration and consent and select Submit.

A message will display confirming your business authorisation has been successfully renewed.

To renew multiple business authorisations:

  1. Log in to RAM
  2. Select Renew in the notification box on the RAM landing page or in the View or manage authorisations, machine credentials and cloud software notifications menu
  3. Select all or choose specific authorisations you want to renew
  4. Review the renewal details and select Continue - you can choose an earlier end date if required
  5. Check the summary, accept the declaration and consent and select Submit.

A message will display with the renewal outcome. This can include successful and unsuccessful renewals.

If your authorisation expires, you’ll need to link again as a principal authority to regain your access. An expired authorisation doesn't affect authorisations you’ve set up for others.

Watch: