Security Roles and Permissions

< Previous section  |  Table of Contents  |  Index  |  Next section >

In order to use MainBoss, users need to be assigned one or more security roles. The available roles are listed in Administration | Security Roles. The comments provided in each role record indicate what permissions that role provides.

Security roles affect what a user sees: if a user doesn't have permission to see a particular type of information, that information will be blanked out or missing entirely from MainBoss windows. Security roles also affect what a user can do; for example, if a user has permission to view work orders (WorkOrderView) but not to close them, the Close Work Order button will be disabled for that user.

Important: When information is blank because you don't have appropriate permissions, move the cursor to the blank; MainBoss will tell you what security roles will give you permission to see that information. Similarly, if a button is disabled, move the cursor to the button; MainBoss will tell you what security roles will allow you to use that button. Note, however, that in some cases, information will disappear entirely (e.g. sections of records just won't be displayed); in this case, you may not even know that something is missing.

To assign security roles to a user, you use the Security Roles section of a user record (Administration | MainBoss Users). In order to decide what roles an individual user should be granted, you must consider what that user is expected to do in his/her job. For example, consider someone working on a help-desk and receiving problem reports from clients outside the maintenance department. What does that person need to do?

Other roles may also be appropriate, depending on what help-desk personnel are expected to do, and on your organization's policies.

Related Security Roles: Security roles tend to come in related groupings; for example, WorkOrder, WorkOrderView, WorkOrderFulfillment, WorkOrderClose, WorkOrderSelfAssign and WorkOrderSummary are all roles related to work orders.

In such a grouping, some roles automatically include others. For example:

For this reason, there's no point in giving someone both WorkOrder and WorkOrderView (for example), because WorkOrder automatically includes all the permissions of WorkOrderView.

In general, a View role automatically includes the related Summary role and a role with a simple name automatically includes roles of the same name with extra words (e.g. PurchaseOrder automatically includes PurchaseOrderView, PurchaseOrderSummary, and PurchaseOrderReceive).

See Also:

< Previous section  |  Table of Contents  |  Index  |  Next section >