Difference between revisions of "Defining Roles, Permissions and Users"
(53 intermediate revisions by 6 users not shown) | |||
Line 1: | Line 1: | ||
__FORCETOC__ | __FORCETOC__ | ||
{{TOC right}} | {{TOC right}} | ||
− | + | {{Note | To add, change permissions associated with, or delete IMSMA roles, you must have permission ''Role Admin''.}} | |
− | + | {{IMSMANG}} allows information managers to control permissions for {{IMSMANG}} functions through the management of Users and Roles. | |
+ | [[Image:Approval buttons.png|center|500px]] | ||
+ | <div align="center"> | ||
+ | ''Permission to Save - Submit - Approve - Reject are controlled by which Role the User belong to'' | ||
+ | </div> | ||
+ | With multiple permission levels for the Approval process, for example, different users can be assigned different permissions, allowing Mine Action Programmes to implement a Data Entry workflow that distinguishes between Data Entry and Data Verification roles. It is recommended to set up a permission structure that reserves approval authority for Data Entry Forms for the most experienced users. | ||
+ | |||
+ | Some of the permissions have [[Change Permission Access Level | two different levels]]: | ||
+ | * Read-only | ||
+ | * Read and Write | ||
{| class="wikitable" | {| class="wikitable" | ||
+ | ! colspan="2" | [[Recommended Roles and Permissions | Recommended ]]{{IMSMANG}} Roles | ||
+ | |- | ||
! Role | ! Role | ||
! Description | ! Description | ||
|- | |- | ||
| Data Entry | | Data Entry | ||
− | | Users whose primary function is to enter | + | | Users whose primary function is to enter Data Entry Forms. This role may or may not include the ability to approve Data Entry Forms. |
|- | |- | ||
| Data Verification | | Data Verification | ||
− | | Users who typically perform quality checks on the data entered by Data Entry users. This role is | + | | Users who typically perform quality checks on the data entered by Data Entry users. This role is responsible for verifying the accuracy of the data entered and approving Data Entry Forms. |
|- | |- | ||
| Operations | | Operations | ||
− | | Users who typically browse for information within | + | | Users who typically browse for information within {{IMSMANG}} to make operational decisions. These users often perform searches for data, generate reports and analyse the data to support operational needs. |
+ | |- | ||
+ | | Operator Administrator | ||
+ | | User that is not working at the NMAA and has more permission than Data Entry users. These could be permissions that is needed after installation e.g. Reference system or permission to publish Data Entry Forms templates. | ||
|- | |- | ||
− | | | + | | IMSMA Administrator |
− | | Users who perform | + | | Users who perform Information Management / System administrator specific functions such as creating Data Entry Form templates, designing printing reports, backing up and restoring data and other technical functions. |
|- | |- | ||
| Guest | | Guest | ||
| Users with essentially read-only access to browse data. | | Users with essentially read-only access to browse data. | ||
− | |||
|} | |} | ||
− | |||
− | + | {{Note | Ensure that NMAA has '''exclusive''' control over user accounts and roles, Data Entry Form templates, the Data Inventory Manager and Auxiliary data.}} | |
− | Roles are named groups of permissions that can be assigned to users. | + | Access to {{IMSMANG}} functions are handled by the permissions. Permissions allow a user to view information related to a function, or view and change information related to a function. Roles are named groups of permissions that can be assigned to users. {{IMSMANG}} includes several [[Predefined Roles | predefined roles]] with the installation. It is '''strongly''' recommended to customise these roles to the need of the Mine Action Programme. It is of course also possible to add new roles or copy existing roles. |
− | |||
{{HowTo's | {{HowTo's | ||
− | |[[ | + | |[[Role List Window]] |
− | |[[ | + | |[[User List Window]] |
+ | |[[Predefined Roles]] | ||
+ | |[[Recommended Roles and Permissions]] | ||
}} | }} | ||
− | {{ | + | {{New_6.0 | 5 new permission groups with Read only variations have been added: |
− | | | + | * Assistance classification |
− | + | * Cause classification | |
+ | * Country structure | ||
+ | * Hierarchy manager | ||
+ | * Needs classification | ||
}} | }} | ||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | + | {{Note| 1st July 2016 it was reported that users must have ''Read and Write'' on Organisation in order to be able to enter geographical data in Data Entry Forms. Investigations are on-going.}} | |
+ | {{NavBox IMSMA NG Administration}} | ||
− | + | [[Category:NAA]] | |
− |
Latest revision as of 22:45, 17 June 2017
To add, change permissions associated with, or delete IMSMA roles, you must have permission Role Admin. |
IMSMANG allows information managers to control permissions for IMSMANG functions through the management of Users and Roles.
Permission to Save - Submit - Approve - Reject are controlled by which Role the User belong to
With multiple permission levels for the Approval process, for example, different users can be assigned different permissions, allowing Mine Action Programmes to implement a Data Entry workflow that distinguishes between Data Entry and Data Verification roles. It is recommended to set up a permission structure that reserves approval authority for Data Entry Forms for the most experienced users.
Some of the permissions have two different levels:
- Read-only
- Read and Write
Recommended IMSMANG Roles | |
---|---|
Role | Description |
Data Entry | Users whose primary function is to enter Data Entry Forms. This role may or may not include the ability to approve Data Entry Forms. |
Data Verification | Users who typically perform quality checks on the data entered by Data Entry users. This role is responsible for verifying the accuracy of the data entered and approving Data Entry Forms. |
Operations | Users who typically browse for information within IMSMANG to make operational decisions. These users often perform searches for data, generate reports and analyse the data to support operational needs. |
Operator Administrator | User that is not working at the NMAA and has more permission than Data Entry users. These could be permissions that is needed after installation e.g. Reference system or permission to publish Data Entry Forms templates. |
IMSMA Administrator | Users who perform Information Management / System administrator specific functions such as creating Data Entry Form templates, designing printing reports, backing up and restoring data and other technical functions. |
Guest | Users with essentially read-only access to browse data. |
Ensure that NMAA has exclusive control over user accounts and roles, Data Entry Form templates, the Data Inventory Manager and Auxiliary data. |
Access to IMSMANG functions are handled by the permissions. Permissions allow a user to view information related to a function, or view and change information related to a function. Roles are named groups of permissions that can be assigned to users. IMSMANG includes several predefined roles with the installation. It is strongly recommended to customise these roles to the need of the Mine Action Programme. It is of course also possible to add new roles or copy existing roles.
How To |
---|
5 new permission groups with Read only variations have been added:
|
1st July 2016 it was reported that users must have Read and Write on Organisation in order to be able to enter geographical data in Data Entry Forms. Investigations are on-going. |
|