2,299
edits
Changes
no edit summary
:: [[ImageFile:SecurityMatrixSettingUTA configuration.png|link=]] 3. Click the into the '''Enable Security MatrixSecurity ''' check boxtab.
4. Click the Toggle on the '''SaveEnable Security Matrix ''' buttonoption.
:: [[File:UTA security matrix.png|500px|border]]
<pre>As soon as the Security Matrix is enabled, all users will lose all access to data within the application until the role-specific permissions are established. </pre>
===Setting Role-Based Security Permissions===
The next step after clicking into the '''Security Matrix''' hyperlink is to specifically choose which roles will have which security permissions with this {{UTA}}.
The {{UTA}} '''Security Matrix''' page will appear with a top row of tabs that lead, chronologically, to the security matrices of the {{L1}}, {{L2}}, and {{L3}} entities in that UTA (if more than a {{L1}} entity is applicable).
:: [[File:Security matrix grant manager 2019.png|thumb|none|800px|Grant Manager Security Matrix example, with tabs for L2, L2, and L3 entities]]
In each security matrix is a list of the respective UTA [[User Role|user roles]], followed by these column headings: '''Access''', '''Deny''', '''View''', '''Add''', '''Edit''', '''Delete''', and '''Assign.'''
:: [[File:Security matrix budget manager column headings.png|thumb|none|1200px|Security Matrix column headings in list view.]]
5. Choose the [[roles]] that should have access to the application in the [[UTA_Settings_-_Security#Access_Role_Settings|Access Role Settings]] box. Only the roles added to [[UTA_Settings_-_Security#Access_Role_Settings|Access Role Settings]] are made available to be configured in the Security Matrix.
6. Click the ''Save'' button again.
7. Click the '''Security Matrix''' link.
The Security Matrix window is displayed.
[[Image:SecurityMatrix.png|link=]]
==How the Security Matrix works==
* The current view is for security associated with the Grant level ({{l1}}).
==Role Engagement==
All access is [[Role|role]] based. Each set of access permissions can be set based on the following role engagement:
* '''All''' – All [[User|users]] in this [[Role|role]] can perform the permissioned actions.
* '''Owner''' – Only a [[User|user]] in this [[Role|role]] associated through the "Owner" standard field can perform the permissioned actions.
==Permission Types==
The following six permission types are available:
* '''Deny''' - Users in this role are denied access to this item.
* '''View''' – View the item.
==Setting the Security Matrix==
1. Set the '''permissions''' as shown below:
[[Image:SecurityMatrixExample.png|link=]]
* All Employees can view all items.
* Only the Employee assigned as the "Owner" of a given record can view, add, edit, delete and assign other people to that record.
[[Image:SecurityMatrixL2.png|link=]]
4. Set the permissions the same as for the Level 1 items.
{{PrevNextStart}} [[Calculating Information between Levels]]{{PrevNextMid}} [[Reader Logs]] {{PrevNextEnd}}
[[Category:Universal Tracking Application]][[Category:Security]]