...
- You must check if your license supports this feature. If you are unable to use GAC, contact Adeptia Support for upgrading your license.
- Only System Admin or an IT user can use GAC for creating new user types. Therefore, ensure that you log in with the rights of a System Admin or an IT user.
- If you are already using Adeptia Connect and want to enable GAC on the current version, you must follow the patch deployment guidelines for GAC.
- This feature is applicable only for company users. A partner user can not create new roles using GAC.
Understanding GAC
...
- System Admin
- IT User
- Business User
...
Following details will help you to understand the GAC behavior on the product.
Current Behavior (Adeptia Connect v2.9.2)
- While creating a transaction for a Partner, the objects of only the following projects are displayed in the Layout and Mapping drop-down lists:
- Partner’s Projects
- Default Projects
- Similarly, while creating a transaction for a Partner, if a user creates any objects such as Layout or Mapping, then these objects are listed within the Partner’s project.
GAC after the Connect Upgrade for Existing Customers
- The access control for IT objects is based on Projects. Therefore, user should manage all the objects through projects. Once you have enabled GAC, you must create the Project as desired through Projects option on Configure Tab.
- After creating the projects, it is highly recommended to arrange the entities in relevant projects as required.
- After creating the projects, user can create the roles and provide access of relevant projects or networks to specific role types.
- User can define a custom role and assign permission to the new role as below:
- User can create Template, Invite Partner etc.
- Manage Project(s) on which the role will have the access.
- Manage Network on which the will have the access.
- While creating any template, you can select the Project, in which you want to create this template.
- Similarly, while creating any other entity i.e. Layout, Mapping etc., you can define the project, in which you want to create the entity.
- Permissions of IT Entities (Templates, AIS objects, and process flows etc.) will be controlled through projects.
- Permission of Partner Entities (Networks, Partners, and Transactions) will be controlled through Networks.
After upgrading to v2.9.3 and enabling GAC, creating a transaction for Partner, the objects will not be filtered based on Partner’s Project. The objects will be filtered based on the project on which the user has the permission. You can achieve this by visiting Projects page in Connect.
...
Disabling GAC with entities created under projects can invite unknown consequences in already running transactions.
Also, Adeptia Connect does not support restore or reset option to the default settings of pre-GAC set up. Therefore, user should enable only GAC only if the company has requirement to manage access of Connect entities for various sets of users.
You can get in touch with Adeptia support in case of any issues.After you have enabled GAC, you can create roles for new user. Also, you can assign following permissions to these roles:
Permission Types
While creating a role type, you can give following permissions for the listed entities:
Permission Type | Description |
---|---|
ALL | This permission type grants all permissions for that user role. Selecting this option will automatically select all permissions. |
VIEW TAB/LINK | This permission type enables the users under the user role to view the tab or link for that entity. For example, if you choose Manage Templates for Template for a user role, then the users of that role will be able to see Manage Template tab on the relevant page. |
LIST & READ | This permission type controls various actions on the entity that may require read permission, for example, View, Search. |
CREATE/DELETE | This permission type enables the user to create or delete an entity. |
EDIT | This permission type enables the user to edit and manage notifications for an entity. |
EXECUTE | This permission type enable the user to perform all executable actions for example, activating/deactivating a template or granting/revoking access. |
Each permission type has list of actions a you can perform for that permission. Following table gives a detailed list of various permissions actions you can control for an entityundertake for each of the permission.
ENTITIES | Permissions | ||||||||
---|---|---|---|---|---|---|---|---|---|
ViewTab/Link | List/Read | Create/Delete | Edit | Execute | |||||
Template | Manage Templates | View | Delete | Edit | Activate | ||||
Search | Create | Deactivate | |||||||
Donut chart | Create Copy | Grant Access | |||||||
Revoke Access | |||||||||
Transaction | Manage Transactions | View | Delete | Edit | Activate | ||||
Search | Create | Add To Favorite | Deactivate | ||||||
Template used | Create Copy | Remove From Favorite | Run Now | ||||||
Run History | Add To Favorite | ||||||||
View Partner | Remove From Favorite | ||||||||
Donut chart | Re-Run Transaction | ||||||||
Network | Manage Networks | Search | Delete | Edit | Grant Access | ||||
View Partners | Create | Send Notification | Revoke Access | ||||||
View Templates | Manage Parameters | Manage Parameters | |||||||
View Transaction | |||||||||
Partner | Manage Partners | Search | Delete | Edit | Activate | ||||
View | Create | Update Logo | Deactivate | ||||||
View Transactions | Send Notification | Grant Access | |||||||
Available Templates | Revoke Acccess | ||||||||
Templates Used | Invite Partner | ||||||||
View Networks | |||||||||
Available Webforms | |||||||||
View Users | |||||||||
User Management | Manage Users | Search | Delete | Edit | Invite User | ||||
View | Import User | Move Objects | Activate | ||||||
Donut chart | Import Partner User | Deactivate | |||||||
Import Partner User | AIS Entity | Login in AIS | |||||||
Project | Manage Project | View | Create | Edit | Grant Access | ||||
Search | Delete | Move All | Revoke Access | ||||||
Web Forms | Manage Webforms | View | Delete | Edit | Grant Access | ||||
Search | Create | Revoke Access | |||||||
Manage Objects | Activate | ||||||||
Create | Deactivate | ||||||||
Create Copy | Secure Entity | Re-Run Transaction | |||||||
Services | Login in AIS | View | Delete | Edit | |||||
Security SettingsManage Objects | Search | Import KeyCreate | |||||||
Create Copy | Web Forms | ||||||||
Secured Services | Login in | View | Delete | EditGrant Access | |||||
Search | CreateSecurity Settings | Revoke Access | Import Key | ||||||
Activate | Deactivate | ||||||||
Dashboard and Monitor | Manage Logs | View Logs | Re-Run Transaction | ||||||
Search | |||||||||
View Triggers List | |||||||||
Theme Settings | Manage Theme Settings | View | Import | ||||||
Export | |||||||||
Edit | |||||||||
Reset | |||||||||
Process Flow | Manage Process Flow | View | Create | Edit | Publish as Template | ||||
Search | Delete | Publish as Post Process | |||||||
Copy | |||||||||
Administer | Show Administer Tab |
Next Step
...