Security Management - User Group Management
Objective
In addition to the individual security profile of a user, there is also the security profile of the user group to which the user belongs. It is mandatory to assign a user group to all users created in maestro*. This restricts, among other things, access to maestro* modules and options. These restrictions apply to all users in the group. When changes are made to the security of the user group, all users in the group are affected.
A user group in maestro* can therefore be defined as a group of employees with similar profiles and/or functions. User groups are created according to the size, employee composition, and needs of the company. For example, a company could have the following groups: direction, regular employees with no access to the payroll, regular employees with access to the payroll, project managers, mobile techs, administration, etc. For each user group created, the administrator has to define the security types, access levels, and module accesses. It is also the administrator who decides how many user groups to create and how many are needed for optimal security management for the company.
Steps
|
maestro* > Maintenance > General Maintenance > Processing > Security Management > User Group Management icon |
Creating a User Group
- The Company Identification section displays the name of the current company and the selected security type for said company. This value is selected in the Company Parameters.
- Click on New.
- Assign a Code and a Description to the user group.
- Complete the other fields:
Fields
Description
Display Mode
Available values:
User will only see the available options
If this value is chosen, the users in the group will see all maestro* options, as well as those to which they do not have access. However, the inaccessible options are greyed out.
User will see all the options
If this value is chosen, the users in the group will not see the options to which they do not have access,
User Class
Available values:
Read, Edit, Insert, Delete
The users in the group will be able to read records, edit them, insert some, or delete some.
Read Only
The users in the group will only be able to read records - they will not be able to edit, insert, or delete any records.
Access Level
Available values:
Standard
A regular user does not have access to all companies, nor the transactions of other users.
Technical
Technicians can install maestro* without having administrator rights.
Administrator
Administrators have access to all companies and other users' transactions.
Loca Administrator
This value can only be used if the security by area is activated.
maestro*MOBILE Employee
These users will only have access to maestro*MOBILE.
maestro* and maestro*MOBILE Employee
Meet the needs of users who work with maestro* but who must access maestro*MOBILE to approve timesheets only.
Area
Allows to select an area from the Area Management. Restricts the user group's access to companies belonging to the same company group.
Reference User
Allow to base a user group on the parameters and selections of a reference user. If we later changer the parameters of this reference user in the Security Management option, we can choose to apply, or not, these changes to all users of the group.
Access to Options
The Menu Items section of the Access to Options tabs allows to select the individual options to which the user of the group will have access.
Some modules and options are made to work together. For example, if we check the Project module, a host of other options are automatically ticked.
NOTE: Use the Open the Treeview and Close the Treeview icons to open and close the maestro* modules and options tree.
User with access to this option
This section displays all user groups that have been created and the users included in said groups.
See Also
- Security Management - Area Management
- Security Management - Access Configuration Table
- maestro*WAY - Security and Access Management in maestro*
