CashPro login — Admin Approvals & Dual Control Guide

After authentication, administrators gain access to governance controls that maintain security and operational integrity. This guide explores the core controls that protect your organization's treasury operations: approval workflows, dual control mechanisms, user administration, and audit capabilities.

Approval Workflow Fundamentals

Approval mechanisms are essential security features that protect businesses from unauthorized activity. After successful authentication, these workflows enforce separation of duties between transaction creation and authorization.

Core Approval Concepts

Initiator/Creator: Users who prepare and submit transactions
Approver: Users authorized to review and approve/reject transactions
Approval Rules: Logic defining who can approve specific transaction types
Thresholds: Amount limits that trigger different approval requirements
Dual Control: Requirement that at least two separate users participate in processing

Transaction Creation

→

Submission for Approval

→

Approval Review

→

Secondary Approval

→

Final Processing

Benefits of Approval Systems

Prevention of unauthorized transactions
Detection of errors before final processing
Enforcement of company payment policies
Protection against fraud
Clear accountability for financial activities

Configuring Effective Approval Workflows

Administrators can design customized approval processes after CashPro login. These configurations determine who must authorize various transaction types.

Approval Rule Parameters

Transaction Type: Different rules for wires, ACH, transfers, etc.
Transaction Amount: Tiered approval layers based on value
Account: Specific requirements for different accounts
Geography: Rules for domestic vs. international payments

Approval Chain Designs

Common approval workflow structures include:

Basic Single Approval

Any designated approver can authorize transactions. Simple implementation but offers limited separation of duties.

Initiator

→

Any Approver

→

Processing

Sequential Approval

Multiple approvers must authorize in a specific order, often with escalating authority levels.

Initiator

→

Level 1 Approver

→

Level 2 Approver

→

Processing

Parallel Approval

Multiple approvers must all authorize, but can do so in any order.

Initiator

→

Approver A

Approver B

→

Processing

Threshold-Based Tiered Approval

Approval requirements that escalate based on transaction value.

$0-$9,999: Single approver
$10,000-$49,999: Two approvers
$50,000+: Two approvers including manager

Approval Timeout

Standard approvals expire after 24-72 hours if not acted upon
Configure shorter timeframes for urgent payments
Implement notifications for pending approvals

Important: Approval configurations are critical security settings accessible after CashPro login. Changes should be carefully documented.

Dual Control Implementation Strategies

Dual control is a cornerstone of financial security that extends beyond transaction approvals. Proper implementation ensures no single user can complete critical processes alone.

Beyond Transaction Approvals

Dual control should be applied to:

User Administration: Creation and permission changes
Beneficiary Management: Adding or modifying recipients
Security Settings: Changes to authentication rules
Account Configuration: Modifying account access

Advanced Dual Control Models

Organizations can implement several dual control approaches based on risk tolerance:

Maker-Checker Model

Classic separation where one user creates/modifies and another must verify and approve.

Prevents unilateral changes
Creates natural review opportunity
Provides clear accountability

Authority-Based Control

Different organizational roles have specific control authority, requiring collaboration.

Business units initiate
Finance reviews
Treasury approves

Threshold Escalation

Increasing levels of dual/multi-control based on value or risk.

Standard transactions: Basic dual control
High-value transactions: Triple or quadruple control
Risk-flagged transactions: Additional specialized review

Balancing Security and Efficiency

Reserve multi-layer approvals for high-risk scenarios
Consider expedited paths for routine activities
Ensure backup approvers exist for all critical roles

User Administration and Access Management

Effective user management is fundamental to security. Administrators must carefully provision and maintain appropriate access rights.

User Management

User Creation: Establishing profiles with appropriate access
Permission Assignment: Configuring rights based on job requirements
Role Changes: Modifying access when responsibilities change
Deactivation: Prompt removal when no longer required

Role-Based Access

After CashPro login, administrators can assign users to these common roles:

Super Administrator: Complete system control (Highest risk)
User Administrator: User management and resets (High risk)
Payment Approver: Transaction approval (High risk)
Payment Initiator: Transaction creation (Medium risk)
Report Viewer: Read-only access (Low risk)

Administrative Delegation Best Practices

For organizations with multiple CashPro administrators:

Segment administrative duties where possible
Implement dual control for high-risk administrative functions
Establish clear escalation paths for administrative issues
Document all administrative procedures
Maintain backup administrators to prevent operational bottlenecks
Review administrative action logs

Access Reviews

Periodic reviews ensure alignment with current roles:

Conduct quarterly reviews of user permissions
Focus on administrative and approval rights
Verify dormant accounts (no login for 60+ days)
Immediately remediate inappropriate access

Alert Configuration

Alerting provides visibility into critical activities beyond standard login monitoring.

Alert Categories

Security Alerts: Unusual login patterns, failed authentication
Transaction Alerts: High-value payments, unusual destinations
Approval Alerts: Pending approvals, approaching deadlines
Administrative Alerts: User changes, permission modifications

Alert Delivery

Methods: Email, SMS, push notifications
Recipient Groups: Configure based on alert type
Escalation: Time-based escalation for critical alerts

Alert Example

For high-risk scenarios:

Mobile push notification to primary responders
Email with detailed information
Escalation if no acknowledgment

Audit Trails and Compliance Management

Comprehensive audit capabilities provide detailed activity records essential for security and compliance.

Audit Logs

Authentication: CashPro login attempts, successes, failures
User Management: User creation, permission changes
Transaction: Records of payment activities
Approval: Records of approval decisions

Using Audit Data

Regular Reviews: Schedule examination of high-risk logs
Pattern Analysis: Identify unusual usage patterns
Segregation Verification: Confirm separation of duties
Incident Investigation: Create forensic timelines when needed

Governance Framework

Organizations benefit from a comprehensive governance framework for their environment.

Key Components

Policy Documentation: Formal policies governing usage
Role Definitions: Clear descriptions of responsibilities
Training: Education for administrators and users
Change Management: Process for implementing changes
Incident Response: Procedures for security events

Quick Navigation

Admin Best Practices

Implement at least two administrators
Require dual control for critical changes
Document all administrative procedures
Conduct regular user access reviews
Configure comprehensive alerts
Review audit logs systematically
Maintain clear approval hierarchies

Official references (text only)

cashpro . bankofamerica . com /
cashproonline . bankofamerica . com /
bankofamerica . com / smallbusiness /

Independent information site — not affiliated with Bank of America. We never ask for or collect credentials.