shared user accounts in koha

Shared user accounts in Koha

We're  often asked in one way or another why libraries shouldn't use shared accounts for staff members, for example using a Circulation account rather than individual accounts in Koha for each member who performs circulation tasks. While it may be faster in the beginning to create a handful of accounts instead of one account per staff member, there are very good reasons to spend the time up front making individual users: 

  1. Koha's permissions are very granular (and getting more granular each version); ensuring that each staff member has appropriate permissions assigned to them per their role is the best way to ensure that staff can perform their assigned duties while also not having more access than is required. Not only does this protect patron data and privacy, but also helps to avoid confusion and unintentional access/changes made by staff with more access than their role requires. 
  2. With any staff turnover (either staff leaving or transferring to new positions), shared accounts are easily missed and old passwords that were known by former staff may persist, posing risk to patron data and privacy. Individual accounts are easy to decommission and are less likely to be overlooked during the offboarding process.
    1. This is especially important to consider in the case where staff may pose an insider threat- that is, a staff member or other employee who either accidentally or purposefully poses a risk to the library. 
  3. Internal audits of actions taken by staff are unclear and hard to parse with shared accounts, making correction of incorrect processes, providing additional training, or addressing potential misuse of the system very hard or impossible to undertake by management. 
  4. If there is ever a need for an external audit, individual accounts provide accountability for your staff and their actions within the system. 

    • Related Articles

    • Managing Patron Accounts

      Koha has many options and tools for managing patron accounts. Customize the Patron Registration Form Libraries can customize which patron fields display on the form, which fields are mandatory and which fields are collapsed within the patron detail ...

    • Credits and Debits in Koha

      Koha has the ability to define credits and debits in system administration. Credits and debits appear as options in patron accounts when charging fees and the Point of Sale module. The Koha Manual has instructions for setting up Credits and Debits. ...

    • Koha Marketing Resources

      Is your library getting ready to go live with Koha's OPAC? Here you will find templates and logos to get the process started. Logos Download Koha logos to customize your branding and messages for your community of library users! Koha Logo Files - ...

    • Notices in Koha

      Notices are a powerful way to communicate with patrons about their checked-out materials, holds, renewals, etc. Koha has many options for customizing the notices and customizing how they are delivered, both through settings configuration and through ...

    • Overdrive Integration with Koha

      An OverDrive integration with Koha will give patrons the ability to search for OverDrive records, place items on hold and checkout them out in your Koha catalog. Tutorial Video: <br> OverDrive Set-Up There are some key pieces of information ...