Include Page | |||||
---|---|---|---|---|---|
|
...
What types of user rights exist?
There is a distinction between application and workflow rights when assigning rights
Application rights:
Relate to the platform and which areas or data are generally viewed and which actions may be performed.
Es wird darüber auch geregelt, ob ein Benutzer Daten exportieren, die Rechte anderer bearbeiten oder Firmen einladen kann.
Applikationsrechte haben keinerlei Verbindung zu Projekten.
Workflow rights:
Always refer to individual projects and regulate the 3 categories
General access
Extended access and
Verification of certificates
General access regulates whether information may be displayed and actions performed for the corresponding project.
Extended allows auditing processes for special areas within a project, e.g. for a high-security area
The certificate audit allows an exception to be made during the auditing/approval of an employee assignment
for missing certificates. This allows the process to be completed if, for example, an A1 certificate is not yet available.
...
How can user rights be managed?
Assigning rights to individual users
Rights are assigned to individual users
This type of rights assignment is commonly suitable for a very small number of users, a temporary change of rights for individual users
or for testing individual rights
Assigning rights for user groups
Groups are created, to which corresponding rights are assigned in order to assign the individual users to these groups
New users only need to be assigned to the corresponding user group(s) instead of numerous individual authorizations
Groups can be created and named according to activity or role, for example,
which makes it easier to assign rights to new usersUser groups can be easily adapted for newly added rights without the worry of individual users being forgotten