Embedded Files
Post date: Oct 20, 2009 5:41:11 AM
Using the combination of users, functions, and security groups, access to information in the Service Manager Control Panel can be as finely tuned as needed. Each function in the program is placed in a 'Security Group', and users are then added to the group. There is no limit to the number of groups, or users in a particular group - and users can be added to multiple groups.
But permissions don't ONLY limit the menu functions a particular user will see - they also limit what users can see on individual pages as well. For example, a person who doesn't have permission to 'View item information' might see an item number listed in a report, but it won't be a link to that 'View item information' screen.
Here's our recommendation for setting up your security scheme:
Using the 'Manage Security Groups' function, first add a group called 'Administrators' - put ALL the program functions in this group, and include any users that should have unlimited access to any information in the system.
Next add a group called 'Common Functions' - include ALL the functions in this group that you intend to allow ANYONE to access. Leave out ONLY functions that might need to be controlled for certain individuals.
Finally, group the remaining functions into logical categories: you might have an 'Order Editing' group for people who need to create orders and add lines to them, an 'Project Management' group for people who need to manage project info, change orders, and critical dates. The key is to MAKE SURE THAT NO SINGLE FUNCTION IS INCLUDED IN MORE THAN ONE GROUP - if you set up groups with this kind of 'overlapping' responsibility, you'll soon find it a nightmare to diagnose why an individual does or doesn't have a permission you think they should have. (The exception to this is the 'Administrators' group - this should have ALL the functions in it.)
To see what permissions a user has, or what groups have 'bestowed' a particular permission, use the 'List Security Levels' function.
Tip: How to delete this post.
Page updated
Google Sites
Report abuse