Layer 1: txAdmin Admins
Open the Admin Manager
In the txAdmin web interface (see txAdmin Setup), open Admin Manager from the menu. Only the master account and admins with the manage admins permission can access it.
Create a new admin
Click New Admin and fill in a username. Link the admin’s Cfx.re account (their forum username) so they can log in with it — you can also link their Discord ID.
Assign permissions
txAdmin permissions are granular: view console, kick, ban, whitelist, manage settings, and more. Give each staff member only what their role needs.
Finding a Player’s Identifiers
For in-game (ACE) permissions you need a player identifier. FiveM players have several:fivem (Cfx.re account ID), license (Rockstar license hash), discord (Discord user ID), and steam (only when a Steam Web API key is set).
Two easy ways to find them:
- txAdmin: open Players, click the player, and their identifiers are listed in the player modal.
- Live console: with the player online, run
statusin the console in the Game Panel — it lists connected players; then use txAdmin or your framework’s admin tools to view full identifiers.
| Identifier | Example | Notes |
|---|---|---|
identifier.fivem: | identifier.fivem:1234567 | Cfx.re account ID — short and easy to read |
identifier.license: | identifier.license:a1b2c3... | Rockstar license hash — always present, most commonly used |
identifier.discord: | identifier.discord:123456789012345678 | Discord user ID — only if the player runs Discord alongside FiveM |
identifier.steam: | identifier.steam:110000112345678 | Hex Steam ID — requires steam_webApiKey on the server |
Layer 2: ACE Permissions in server.cfg
ACE is FiveM’s built-in access control system. You define what a group may do withadd_ace, and put people in groups with add_principal. Add these lines to your server.cfg and restart:
| Line | What it does |
|---|---|
add_ace group.admin command allow | Grants the group.admin group permission to use console commands |
add_ace group.admin "resource.permission" allow | Grants a specific permission a resource asks for (check its docs) |
add_principal identifier.fivem:... group.admin | Puts a specific player (by Cfx.re ID) into group.admin |
Group Inheritance
Groups can inherit from other groups usingadd_principal between principals:
group.admin automatically has command.kick (inherited) plus command.stop (its own). This lets you build a clean staff hierarchy: user → moderator → admin.
Framework admin systems (QBCore’s
qb-adminmenu, ESX’s admin groups, or txAdmin’s own in-game menu) layer on top of ACE — many of them check for specific ACE permissions documented in their READMEs, while others keep their own permission lists in the database.Test Your Setup
- Restart the server so the new
server.cfglines load. - Join the server with the account you granted.
- Open the F8 console and try a permission-gated command — for example
txadminscripts respond to/txfor txAdmin admins, or test a simple registered admin command from one of your resources. - If you get “Access denied”, re-check the identifier (one typo breaks the whole line) and confirm the line appears after any framework
ensurelines that register the permissions.
Security Best Practices
- Never paste
add_principallines sent by strangers “to help debug” — this is a common social-engineering trick. - Audit your admin list regularly, in both txAdmin’s Admin Manager and server.cfg.
- Give sub-users on the Game Panel only the panel permissions they need — panel access is a third, separate layer above txAdmin and ACE.
- Take regular backups so a rogue admin’s damage can be rolled back.
Build your staff team on solid ground
FiveM server hosting from €4.80/month at Wasabi Hosting — with DDoS protection and 24/7 support behind your community.

