Authorisation per administration
An environment can contain several administrations. You record some data for the entire environment and other data per administration. You always work in one particular administration, but in certain situations it is possible for data from all the administrations to be visible. In that situation you can apply filter authorisation by administration.
Using authorisation filters, you can specify that a user only has access to one specific administration. If you include the Administration field in the data collection, the filter authorisation is also applied in reports and analyses. You must test this thoroughly!
To authorise opening administrations (mandatory):
Users must be authorised for General / Administration / Open. If a user changes administration via this function, he only has access to authorised administrations.
- Go to: General / Management / Authorisation tool.
- Select the user group. In this case, the preferred user group is Everybody, because all users must be able to open administrations.
- Go to the tab: Menu.
- Authorise the General / General / Administration / Open function.
Filter authorisation per administration:
- Go to: Extra / Data filter maintenance.
- Select the General - Administrations filter.
- Select According to filters.
- Click on: Add.
- Now, add a filter to each administration.
- Click on: Refresh, to test the filter.
- If required, add an empty filter giving access to all the administrations.
- Add a group for each administration. Of course you can also choose a different approach, for example, by using existing groups.
- Divide the users into the right groups.
- Select a group.
- Go to the tab: Authorisation.
- Go to: the path shown in the image.
- Select the correct filter and assign the right authorisation.
- Perform these steps for all user groups. If a user notifies you that he does not have access to an administration, you first check if this user is a member of one of these user groups. Also check if the correct authorisation filter has been activated for each user group.
Directly to |