Pre-requisites
- Granular Access Control (GAC) is an add-on feature of Adeptia Connect. Therefore, you must check if your license supports this feature. If you can not access GAC, contact Adeptia Support for upgrading your license.
- Only System Admin or an IT user can use GAC and create new user types. Therefore, ensure that you log in with the rights of a System Admin or an IT user.
- If you are already using Adeptia Connect and enable GAC on the current version, you must follow the patch deployment guidelines for GAC.
- This feature is applicable only for company users. A partner user can not create new roles using GAC.
Understanding GAC
- You can assign multiple roles to a user and the user will be asked to select one the role types (from the assigned roles) while logging in.
- There are 5 pre-built roles in the product that can be used as a base role to create a new role. Following are five type of pre-existing roles in Adeptia Connect:
- System Admin
- IT User
- Business User
- Partner IT User
- Partner Business User
- The permission model is governed through four key permissions
- You must have permission to perform these activities in Adeptia Connect.
...
After you have enabled GAC, you can create roles for new user. Also, you can assign following permissions to these roles:
Permission Types
While creating a role type, you can give following permissions for the listed entities:
| Permission Type | Description |
|---|---|
| ALL | This permission type grants all permissions for that user role. Selecting this option will automatically select all permissions. |
| VIEW TAB/LINK | This permission type enables the users under the user role to view the tab or link for that entity. For example, if you choose Manage Templates for Template for a user role, then the users of that role will be able to see Manage Template tab on the relevant page. |
| LIST & READ | This permission type controls various actions on the entity that may require read permission, for example, View, Search. |
| CREATE/DELETE | This permission type enables the user to create or delete an entity. |
| EDIT | This permission type enables the user to edit and manage notifications for an entity. |
| EXECUTE | This permission type enable the user to perform all executable actions for example, activating/deactivating a template or granting/revoking access. |
Each permission type has list of actions a you can perform for that permission. Following table gives a detailed list of various actions you can undertake for each of the permission.
| ENTITIES | Permissions | ||||||||
|---|---|---|---|---|---|---|---|---|---|
| ViewTab/Link | List/Read | Create/Delete | Edit | Execute | |||||
| Template | Manage Templates | View | Delete | Edit | Activate | ||||
| Search | Create | Deactivate | |||||||
| Donut chart | Create Copy | Grant Access | |||||||
| Revoke Access | |||||||||
| Transaction | Manage Transactions | View | Delete | Edit | Activate | ||||
| Search | Create | Add To Favorite | Deactivate | ||||||
| Template used | Create Copy | Remove From Favorite | Run Now | ||||||
| Run History | Add To Favorite | ||||||||
| View Partner | Remove From Favorite | ||||||||
| Donut chart | Re-Run Transaction | ||||||||
| Network | Manage Networks | Search | Delete | Edit | Grant Access | ||||
| View Partners | Create | Send Notification | Revoke Access | ||||||
| View Templates | Manage Parameters | Manage Parameters | |||||||
| View Transaction | |||||||||
| Partner | Manage Partners | Search | Delete | Edit | Activate | ||||
| View | Create | Update Logo | Deactivate | ||||||
| View Transactions | Send Notification | Grant Access | |||||||
| Available Templates | Revoke Acccess | ||||||||
| Templates Used | Invite Partner | ||||||||
| View Networks | |||||||||
| Available Webforms | |||||||||
| View Users | |||||||||
| User Management | Manage Users | Search | Delete | Edit | Invite User | ||||
| View | Import User | Move Objects | Activate | ||||||
| Donut chart | Import Partner User | Deactivate | |||||||
| Import Partner User | AIS Entity | Login in AIS||||||||
| Project | Manage Project | View | Create | Edit | Grant Access | ||||
| Search | Delete | Move All | Revoke Access | ||||||
| Web Forms | Manage Webforms | View | Delete | Edit | Grant Access | ||||
| Search | Create | Revoke Access | |||||||
| Manage Objects | Activate | ||||||||
| Create | Deactivate | ||||||||
| Create Copy | Secure Entity | Re-Run Transaction | |||||||
| Services | Login in AIS | View | Delete | Edit | |||||
| Security Settings | Manage Objects | Search | Import KeyCreate | ||||||
| Create Copy | |||||||||
| Web Forms | Manage WebformsSecured Services | Login in | View | Delete | Edit | Grant Access | |||
| Search | CreateSecurity Settings | Revoke | AccessImport Key | ||||||
| Activate | Deactivate | ||||||||
| DashboardDashboard and Monitor | Manage Logs | View Logs | Re-Run Transaction | ||||||
| Search | |||||||||
| View Triggers List | |||||||||
| Theme Settings | Manage Theme Settings | View | Import | ||||||
| Export | |||||||||
| Edit | |||||||||
| Reset | |||||||||
| Process Flow | Manage Process Flow | View | Create | Edit | Publish as Template | ||||
| Search | Delete | Publish as Post Process | |||||||
| Copy | |||||||||
| Administer | Show Administer Tab | ||||||||