DV360 Add User Access | OpsBlu Docs

DV360 Add User Access

Invite process for granting Display & Video 360 access with the right partner and advertiser scope.

Add User Access

Follow this process to grant access to Display & Video 360 (DV360) accounts. DV360 uses a hierarchical access model with partner and advertiser levels, each supporting different roles and permissions. Determine the appropriate access scope before proceeding.

When to Add Users

Add users to DV360 when:

  • New campaign manager needs to build or optimize display and video campaigns
  • External agency contracted to manage campaigns for specific advertisers
  • Client requests read-only access to monitor campaign performance and reporting
  • Finance or billing teams need invoice visibility and payment management
  • Data analyst requires reporting access for dashboards and performance analysis
  • Temporary contractor needs access for product launch or seasonal campaign
  • Floodlight administrator needs to manage conversion tracking tags
  • API developer requires access for automated campaign management

Prerequisites

Before inviting a user, gather:

  • Administrator permissions on the relevant DV360 partner account
  • User's Google Account email (they must have or create a Google Account)
  • Which access level they need: Partner-wide or specific advertisers
  • Role needed:
    • Partner level: Administrator, Standard, Read-only, Billing, or Finance
    • Advertiser level: Administrator, Standard, Read-only, or Billing
  • Which advertisers they should access (if not partner-wide)
  • Approval from partner owner or finance team for billing-related access
  • 2-step verification requirement for Administrator and Billing roles

Role selection guidance:

Administrator:

  • For users managing user permissions, billing, Floodlight tags, or API credentials
  • Has full access to partner or advertiser settings
  • Can create and manage other users
  • Required for Floodlight configuration and pixel ownership
  • Most privileged role - limit to essential personnel only

Standard:

  • For campaign managers creating and optimizing campaigns and line items
  • Can manage insertion orders, line items, creatives, and targeting
  • Most common role for traders and campaign specialists
  • Cannot access billing, user management, or partner settings

Read-only:

  • For analysts, clients, or stakeholders needing reporting access
  • Can view campaigns, performance data, and reports
  • Cannot edit campaigns or access sensitive settings
  • Ideal for oversight and monitoring purposes

Billing (or Finance):

  • For accounts payable teams needing invoice and payment access
  • Can view and manage billing information
  • Limited campaign visibility
  • Some partners use Finance role for invoice-only access

Invite Workflow

Step 1: Access user management

  1. Sign in to Display & Video 360
  2. Navigate to the correct Partner from the partner selector
  3. Go to Settings (gear icon) → User Management
  4. Verify you have Administrator access before proceeding

Step 2: Initiate invitation

  1. Click Add User or Invite User button
  2. User invitation form will appear

Step 3: Enter user information

  1. Email address: Enter user's Google Account email
    • Must be a valid Google Account
    • User will need to accept invitation from this email
  2. Role: Select Administrator, Standard, Read-only, Billing, or Finance
  3. Access level: Choose between:
    • Partner: Grants access to all current and future advertisers under the partner
    • Advertiser: Limits access to specific advertisers you select
  4. Advertiser selection (if advertiser-level access):
    • Click Select Advertisers
    • Choose specific advertisers from the list
    • Avoid selecting "All advertisers" unless explicitly approved
    • Document which advertisers were granted in your access log

Step 4: Configure additional permissions

  1. Billing visibility: Enable only if user needs to see invoices or payment details
  2. API access: Note if user will need API credentials (Admin only)
  3. Floodlight permissions: Confirm if user needs Floodlight tag management (Admin only)

Step 5: Send invitation

  1. Review all selections for accuracy
  2. Click Send Invitation or Invite
  3. User appears in the user list with Pending status
  4. DV360 sends email invitation to the specified address
  5. Invitation typically expires in 7-30 days if not accepted

Step 6: Verify invitation sent

  1. Confirm user appears in pending invitations list
  2. Note the invitation date for follow-up tracking
  3. Verify the role and advertiser scope are correct

Post-Invite Follow-Up

User communication

  • Notify user invitation sent to their Google Account email
  • Provide acceptance deadline (recommend 48-72 hours)
  • Confirm they have a Google Account; if not, they must create one first
  • Enable 2-step verification if user has Administrator or Billing role
  • Share onboarding materials:
    • Campaign naming conventions
    • Advertiser-specific guidelines
    • Floodlight tag documentation (if applicable)
    • DV360 training resources or internal SOPs

Documentation

  • Capture invitation details in access log or ticketing system:
    • User email and name
    • Role assigned (Admin, Standard, Read-only, Billing, Finance)
    • Access level (Partner or Advertiser)
    • Specific advertisers granted (if advertiser-level)
    • Date invited
    • Approver name
    • Business justification
  • Screenshot pending invitation for compliance audit trail

Validation

  • Once user accepts invitation, verify they can:
    • All users: Access DV360 and see the correct partner
    • Advertiser-level: See only assigned advertisers in the advertiser selector
    • Standard: Create or edit campaigns and line items
    • Read-only: View reports but cannot edit campaigns
    • Administrator: Access User Management, Floodlight settings, and billing (if enabled)
    • Billing/Finance: Access invoices and payment methods
  • Have user log in within 72 hours to confirm access is working
  • Ask user to create test campaign or report to verify functional access

Tracking and review

  • Set quarterly access review reminder
  • If contractor or temporary user, document planned removal date
  • Update internal roster, SSO directory, or access matrix
  • Add to any compliance or security review schedules

Troubleshooting

User doesn't have Google Account:

  • They must create a Google Account using the invited email before accepting
  • Share Google Account creation link: https://accounts.google.com/signup
  • Work email addresses can be used to create Google Accounts

User can't find invitation email:

  • Check spam/junk/promotions folders in email client
  • Resend invitation from User Management interface
  • Verify correct email address was entered
  • Check Google Account associated with that email

User accepted but can't see expected advertisers:

  • Verify advertiser-level permissions were set correctly
  • Confirm advertisers are still active and not archived
  • Have user refresh browser or clear cache
  • Check if advertisers were moved to different partner

User accepted but has "no access" errors:

  • Verify role was assigned correctly (not blank)
  • Confirm partner access is still active
  • Check if user's Google Account matches invitation email exactly
  • Have user log out completely and log back in

Wrong role assigned:

  • Edit user from User Management immediately
  • Update role to correct level
  • Role changes take effect on next login
  • Document the correction in access log

User needs both partner and advertiser access:

  • Cannot mix levels for single user
  • Choose partner-level access if they need broad access
  • Use advertiser-level only if strict limitation is required

Billing visibility issues:

  • Billing toggle must be explicitly enabled during invitation
  • Finance role provides billing-only access
  • Administrator role includes billing by default (if enabled)
  • Verify partner has billing permissions configured

2-step verification not enabled:

  • Require Administrator and Billing users to enable 2FA
  • Share Google 2-step verification setup guide
  • Verify 2FA is active before granting billing or admin access

Common Use Cases

Onboarding agency for display campaigns:

  • Role: Standard
  • Access: Advertiser-level for contracted advertisers only
  • Follow-up: Provide campaign naming conventions, creative specs, brand safety guidelines

Adding client stakeholder for reporting:

  • Role: Read-only
  • Access: Advertiser-level for their specific advertiser
  • Follow-up: Show reporting interface, create custom dashboards, emphasize read-only limitations

Onboarding Floodlight administrator:

  • Role: Administrator
  • Access: Partner or Advertiser depending on scope
  • Follow-up: Document Floodlight tag structure, provide tag management training, set up tag ownership

Adding finance team member:

  • Role: Billing or Finance
  • Access: Partner-level for all invoices
  • Follow-up: Confirm invoice download access, payment method visibility, set up billing alerts

Temporary contractor for seasonal campaign:

  • Role: Standard
  • Access: Advertiser-level for launch-related advertisers only
  • Follow-up: Document contract end date, set removal reminder, limit to seasonal campaigns

API developer for automation:

  • Role: Administrator (required for API credentials)
  • Access: Partner or Advertiser based on automation scope
  • Follow-up: Generate API credentials, provide API documentation, set up service account

Multi-advertiser campaign manager:

  • Role: Standard
  • Access: Partner-level (if managing many advertisers) or Advertiser-level (if limited set)
  • Follow-up: Provide advertiser list, campaign portfolio overview, optimization guidelines

Best Practices

  • Confirm Google Account exists before inviting to avoid delays
  • Start with minimal permissions and expand if needed (principle of least privilege)
  • Document every invitation with approver, business justification, and review date
  • Set review reminders for all users, especially temporary contractors
  • Use advertiser-level access instead of partner-level whenever possible for better security
  • Separate billing from campaign roles to maintain financial controls
  • Require 2-step verification for Administrator and Billing roles
  • Screenshot pending invitations for compliance and audit trails
  • Verify acceptance within 72 hours and follow up if not accepted
  • Test user access immediately after acceptance to catch issues early
  • Maintain access matrix showing all users, roles, and advertiser assignments
  • Avoid "All advertisers" selection at advertiser level unless explicitly approved
  • Review Floodlight ownership when adding or removing Administrator users
  • Rotate API credentials when Administrator users are removed
  • Schedule quarterly access reviews to remove inactive or unnecessary users
  • Use clear business justifications in access requests for audit compliance
Back to top