Beruflich Dokumente
Kultur Dokumente
1 SP2
Access Security
LEVEL LEARNER
Overview
Security combines authentication which ensuring that a person
Objectives
After completing this chapter you will learn:
Do You Know?
Operator ID
Create Operator ID
Rules Explorer, expand the Organization link. Right-click on
Operator ID, and click New.
Operator ID (cont)
General Tab
In General tab enter personal details of the Operator (i.e.
Operator ID (cont)
Work Settings Tab
Organization Unit: The Organizational Unit section
contains the name of the Organization, Division & OrgUnit
to which the operator belongs.
Operator ID (cont)
Work Settings Tab
Work Group:
Work Group is logical collection of Operators and usually Work
Group will have a manager.
Operator ID (cont)
Work Settings Tab
Skills (Optional):
In Skills section enter the name of a skill rule (RuleAdmin-Skill rule type) associated with this user. Select a
user proficiency rating for this skill between 1 and 10, where
10 indicates highest proficiency
WorkBaskets:
A workbasket is a named queue of open assignments that
are not associated with a particular operator. It is an
instance of the Data-Admin-WorkBasket class.
Enter a list of workbaskets that may contain assignments for
this user with urgency threshold values
10
Operator ID (cont)
Work Settings Tab
Get From WorkBaskets First:
When selected, system retrieves an assignment from the user's
WorkList only when all of the WorkBaskets listed in the
WorkBaskets array are empty.
If not selected, the Get Most Urgentbutton when clicked
retrieves the top assignment on the user WorkList, and
accesses WorkBaskets only if this user's WorkList is empty.
Merge WorkBasket:
11
Operator ID (cont)
Work Settings Tab
Use Scheduled Absence section to define:
When and whether this user is available to receive
assignments
When this user is unavailable (e.g., on vacation or
otherwise not able to process assignments)
Who is to receive assignments when this user is unavailable
12
Operator ID (cont)
Work Settings Tab
In Substitute Operator Type section complete the fields to
control how Process Commander routes assignments for this
operator when this operator is marked absent or unavailable.
For Substitute Operator Type choose either Operator or
Workbasket so that routing rules can redirect the
assignments to a substitute operator or to a workbasket during
those periods.
In LookUp In DecisionTree field select a decision tree rule
13
Operator ID (cont)
Advanced Tab
Security Settings:
Change Password: To set the Operator password for
authentication.
External Authentication: Select to require that this operator
be authenticated only through LDAP or other external
authentication facilities
Allow Rule Checkout : Select to allow this user to update
rules in RuleSets that require check out
14
Operator ID (cont)
Advanced Tab
Security Settings:
Starting Activity to execute: Identifies the first activity that
the system executes after this user is authenticated. The
standard activity for this purpose is named DataPortal.ShowDesktop.
15
Operator ID (cont)
Advanced Tab
Security Settings:
License Type: Select Named if this Operator ID is a
person who interacts with Process Commander through a
Web browser. Invocation if this Operator ID is for
processing performed through service calls, or for
processing by external users (typically through the Directed
Web access feature)
Default Locale: It affects the processing of input dates,
16
Do You Know?
Access Group
17
18
19
20
21
The WorkPools section lists all Class Groups for Work Pools in
which users associated with this Access Group are permitted to
enter new work objects. Each Class Group defines a Work Pool,
22 a named collection of work types.
23
24
26
Do You Know?
Access Role
27
28
29
30
31
32
Do You Know?
Privilege
33
Privilege: Overview
Introduction:
A Privilege allows a user with a particular role to execute
certain application functions. Privileges are associated with
access roles, not directly to users.
If a user has the access role with which the privilege is
associated, the user has the privilege. Privileges also play a
role in routing work, as users can only receive work items for
which they have privileges.
34
Privilege: Create
From Rules Explorer, expand the Security link. Right-Click
on Privilege, and Click New. Click New. The New form
appears.
35
Privilege: Create
Enter the name of the class to which this privilege applies in the
Applies To field. Remember that privileges are inherited by child
classes, so enter the name of a class at the appropriate point in
the hierarchy.
Enter the privilege name in the Privilege Name field. Begin with a
letter and use only letters, digits, and dashes.
Select your RuleSet and version if necessary from the selection
boxes.
Choose the status of this rule from the Available selection box (see
the Application Developer Help) and click Create.
36
37
Privilege (cont)
Role Tab
This read-only tab provides quick access to any Access of Role
to Object rules (Rule-Access-Role-Objrule type) that
references this privilege rule (on the Privileges tab). Click a row
to open the Access of Role to Object rule.
38
Questions?
39
Welcome Break
40
Lend a Hand
Create Operator ID
RuleSet Version
Application Version
Access Group
Associate Access Group to Operator ID
Add
Work User & Work Manager Portals to the Access Group
41
42