Difference between revisions of "UTA Settings - Security"

From SmartWiki
Jump to: navigation, search
(Changes in January 2014)
(Security Settings)
 
(14 intermediate revisions by 3 users not shown)
Line 1: Line 1:
:[[Image:UTASettingsTabsSecurityConfiguration.png|link=]]
+
:[[Image:security.png|link=]]
  
 
The Security Settings page of the UTA consists of several sections.  
 
The Security Settings page of the UTA consists of several sections.  
Line 5: Line 5:
  
 
==Security Settings==
 
==Security Settings==
[[Image:UTASecuritySettings.png|link=]]
+
[[Image:Security_settings2017.png|link=|border]]
  
 +
* '''Enable Security Matrix - Click to specify advanced access control setting to level 1s and level 2s''' - Selecting this setting enables the link to the Security Matrix (above).
 
* '''Security Matrix - Defines how users can interact with each level of the data, based on the way they need to interact with the data''' - See [[Security Matrix]] for configuration instructions.
 
* '''Security Matrix - Defines how users can interact with each level of the data, based on the way they need to interact with the data''' - See [[Security Matrix]] for configuration instructions.
* '''Enable Security Matrix - Click to specify advanced access control setting to level 1s and level 2s''' - Selecting this setting enables the link to the Security Matrix (above).
 
* '''Enable Application Scope Access - Define specific user access''' - Allows assignment of designated role to a user if branch or company of a Level 1 instance is in the list. See [[Application Scope Access]] for details.
 
* '''Use UTA roles for activities - Use UTA roles Level 2 and Level 3 Activity items when Security matrix is enabled (System roles is used by default) ''' - If checked then the the settings in the Security Matrix will be based on the role used to associate the user with a level one record in the UTA, rather than the role they are assigned in the system.
 
* '''Enable Email Role Restriction - Users can only email those who their role allows''' - Allows system administrators to set up a matrix of which roles can send emails to which other roles through SmartSimple. See [[Email restriction]] page for details.
 
 
* '''Enable UTA Role Field Access - Use UTA roles for field access instead of system roles ''' - If checked then the access to fields is controlled by the role used to associate the user with a level one record in the UTA, rather than the role they are assigned in the system.  
 
* '''Enable UTA Role Field Access - Use UTA roles for field access instead of system roles ''' - If checked then the access to fields is controlled by the role used to associate the user with a level one record in the UTA, rather than the role they are assigned in the system.  
 
* '''Enforce Roles That Can Set Status - Prevents scripts or submit buttons from overriding the Status setting''' - will prevent scripts or submit buttons from setting a record to a status if the current users Role is not included in the '''Allow to Set Roles''' settings for that Status.   
 
* '''Enforce Roles That Can Set Status - Prevents scripts or submit buttons from overriding the Status setting''' - will prevent scripts or submit buttons from setting a record to a status if the current users Role is not included in the '''Allow to Set Roles''' settings for that Status.   
* '''Enable Contact Organization Filter - Use UTA organizations visibility is controlled by UTA roles''' - Contacts available to be selected in the Level 1 Owner standard field can be restricted by role.
+
* '''Enable Email Role Restriction - Users can only email those who their role allows''' - Allows system administrators to set up a matrix of which roles can send emails to which other roles through SmartSimple. See [[Email restriction]] page for details.
* '''Enable UTA Organization Filter - Use UTA organizations visibility is controlled by UTA roles''' - Organizations available to be selected in the Level 1 Branch standard field can be restricted by role.
+
* '''Enable Contact Filter - UTA contacts visibility is controlled by UTA roles''' - Contacts available to be selected in the Level 1 Owner standard field can be restricted by role.
* '''Default Contact Lookups based on Grant Organization''' - Contacts available to be selected can be restricted to those belonging to the organization
+
* '''Enable UTA Organization Filter - UTA organizations visibility is controlled by UTA roles''' - Organizations available to be selected in the Level 1 Branch standard field can be restricted by role.
* '''Inherit Grant Status Lock''' - See [[Inherit Status Locking]] page for details.
+
* '''[[Visibility_Permissions#UTA-level_Visibility_Permissions|Feature and Function Permissions]]''' - Visbility permission for various objects and controls.
 +
* '''Field Permission Matrix''' - Configure custom field access permissions for selected user roles based on status.
 +
* '''Inherit Grant Status Lock''' - Setting a [[status lock]] at '''{{l1}}''' can lock the '''{{l2}}''' and '''{{l3}}''' items as well, regardless of their current [[status]]. Options for this setting include ''Activity Only'' (locks Level 2 activities when Level 1 is in a [[status lock|locked status]]) and ''Activity and Level 3 Activity'' (locks both Level 2 and 3 activities when Level 1 is in a [[status lock|locked status]]).
  
 
<BR><BR>
 
<BR><BR>
  
==Access Role Settings==
+
==Application Access==
 
[[Image:SecuritySettingsPage-AccessRoleSettings.png|link=|550px]]
 
[[Image:SecuritySettingsPage-AccessRoleSettings.png|link=|550px]]
* When [[roles]] are added to this section using the {{LookupButton}} button, a user will only be able to access this UTA if they are in one of the assigned roles.<BR><BR>
+
* When [[roles]] are added to this section using the {{LookupButton}} button, a user will only be able to access this UTA if they are in one of the assigned roles.
 +
* Only the roles added to Access Role Settings are made available to be configured in the [[Security Matrix]].
 +
<BR><BR>
  
 
==Administrator Access==
 
==Administrator Access==
 
[[Image:SecuritySettingsPage-AdministratorAccess.png|link=|550px]]
 
[[Image:SecuritySettingsPage-AdministratorAccess.png|link=|550px]]
 
* When [[roles]] are added to this section using the {{LookupButton}} button, a user will only be able to access the [[:Category:UTA Settings|Settings tab]] if they are in one of the assigned roles.<BR><BR>
 
* When [[roles]] are added to this section using the {{LookupButton}} button, a user will only be able to access the [[:Category:UTA Settings|Settings tab]] if they are in one of the assigned roles.<BR><BR>
==View Field History==
+
 
[[Image:SecuritySettingsPage-ViewFieldHistory.png|link=|550px]]
 
*  When [[roles]] are added to this section using the {{LookupButton}} button, a user will only be able to access the [[Track_Changes#All_Tracked_Fields|Fields History tab]] on a UTA record if they are in one of the assigned roles.<BR><BR>
 
==View Reader Log History==
 
[[Image:SecuritySettingsPage-ViewReaderLogHistory.png|link=|550px]]
 
* When [[roles]] are added to this section using the {{LookupButton}} button, a user will only be able to access the [[Reader Log]] if they are in one of the assigned roles.<BR><BR>
 
==View Workflow History==
 
[[Image:SecuritySettingsPage-ViewWorkflowHistory.png|link=|550px]]
 
* When [[roles]] are added to this section using the {{LookupButton}} button, a user will only be able to access the [[Workflow History]] tab if they are in one of the assigned roles.<BR><BR>
 
 
==Override Template Branch Restriction==
 
==Override Template Branch Restriction==
 
[[Image:SecuritySettingsPage-OverrideTemplateBranchRestriction.png|link=|550px]]
 
[[Image:SecuritySettingsPage-OverrideTemplateBranchRestriction.png|link=|550px]]
 
* When [[roles]] are added to this section using the {{LookupButton}} button, a user will only be able to override the "Restricted to" setting on [[Level_1_Templates#Template_Settings|Level 1 Templates]] if they are in one of the assigned roles.<BR><BR>
 
* When [[roles]] are added to this section using the {{LookupButton}} button, a user will only be able to override the "Restricted to" setting on [[Level_1_Templates#Template_Settings|Level 1 Templates]] if they are in one of the assigned roles.<BR><BR>
==Enable Batch Update==
 
[[Image:SecuritySettingsPage-EnableBatchUpdate.png|link=|550px]]
 
* When [[roles]] are added to this section using the {{LookupButton}} button, a user will only be able to perform [[Batch Update]]s on [[UTA]] records if they are in one of the assigned roles.<BR><BR>
 
==Enable Batch Role Assignment==
 
[[Image:SecuritySettingsPage-EnableBatchRoleAssignment.png|link=|550px]]
 
* When [[roles]] are added to this section using the {{LookupButton}} button, a user will only be able to use the [[Auto Assignments|Assign By Role]] feature from {{l1}} to {{l2}} records if they are in one of the assigned roles.<BR><BR>
 
==Disable Data Exchange==
 
[[Image:SecuritySettingsPage-DisableDataExchange.png|link=|550px]]
 
* When [[roles]] are added to this section using the {{LookupButton}} button, a user will '''not''' be able to access the Export Claim and Export Notes tabs if they are in one of the assigned roles. These settings tabs allow users to share UTA information between multiple instances using the [[UTA Data Exchange|Data Exchange]] functionality.<BR><BR>
 
  
==Anonymize Record Lock Owner Role Settings==
 
[[Image:SecuritySettingsPage-AnonymizeRecordLockOwnerRoleSettings.png|link=|550px]]
 
* See [[Record Lock]] page for details.
 
<BR><BR>
 
  
<!--==Changes in January 2014 ==
 
 
* In January 2014 security settings relating to Contacts and Companies, that previously resided in the UTA Security settings page, were moved to the individual [[UTA Standard Field Settings]] section.
 
 
<BR><BR>
 
-->
 
  
 
==See Also==
 
==See Also==

Latest revision as of 09:57, 19 July 2017

Security.png

The Security Settings page of the UTA consists of several sections.

Security Settings

Security settings2017.png

  • Enable Security Matrix - Click to specify advanced access control setting to level 1s and level 2s - Selecting this setting enables the link to the Security Matrix (above).
  • Security Matrix - Defines how users can interact with each level of the data, based on the way they need to interact with the data - See Security Matrix for configuration instructions.
  • Enable UTA Role Field Access - Use UTA roles for field access instead of system roles - If checked then the access to fields is controlled by the role used to associate the user with a level one record in the UTA, rather than the role they are assigned in the system.
  • Enforce Roles That Can Set Status - Prevents scripts or submit buttons from overriding the Status setting - will prevent scripts or submit buttons from setting a record to a status if the current users Role is not included in the Allow to Set Roles settings for that Status.
  • Enable Email Role Restriction - Users can only email those who their role allows - Allows system administrators to set up a matrix of which roles can send emails to which other roles through SmartSimple. See Email restriction page for details.
  • Enable Contact Filter - UTA contacts visibility is controlled by UTA roles - Contacts available to be selected in the Level 1 Owner standard field can be restricted by role.
  • Enable UTA Organization Filter - UTA organizations visibility is controlled by UTA roles - Organizations available to be selected in the Level 1 Branch standard field can be restricted by role.
  • Feature and Function Permissions - Visbility permission for various objects and controls.
  • Field Permission Matrix - Configure custom field access permissions for selected user roles based on status.
  • Inherit Grant Status Lock - Setting a status lock at Level 1 can lock the Level 2 and Level 3 items as well, regardless of their current status. Options for this setting include Activity Only (locks Level 2 activities when Level 1 is in a locked status) and Activity and Level 3 Activity (locks both Level 2 and 3 activities when Level 1 is in a locked status).



Application Access

SecuritySettingsPage-AccessRoleSettings.png

  • When roles are added to this section using the Lookupbutton.PNG button, a user will only be able to access this UTA if they are in one of the assigned roles.
  • Only the roles added to Access Role Settings are made available to be configured in the Security Matrix.



Administrator Access

SecuritySettingsPage-AdministratorAccess.png

  • When roles are added to this section using the Lookupbutton.PNG button, a user will only be able to access the Settings tab if they are in one of the assigned roles.

Override Template Branch Restriction

SecuritySettingsPage-OverrideTemplateBranchRestriction.png

  • When roles are added to this section using the Lookupbutton.PNG button, a user will only be able to override the "Restricted to" setting on Level 1 Templates if they are in one of the assigned roles.


See Also