Security Console allows configuration of database security in a variety of ways to meet your business needs. Security is available based on role or class. You can add as many roles and classes as your organization needs to establish security.
A role is a group of users with common access rights to database components, functions, and entities. Security roles give or deny access to tables, fields, reports, additional access, and accounting basis.
A class is an alternate grouping of users that establishes access rights to entities, CRE properties, and CRE projects. Classes are also used to manage access to Web Services, which enable your organization to integrate third-party solutions with MRI products and services.
Consider the following questions when planning your security strategy:
▪ How many employees will be accessing the database?
▪ Do their job titles dictate the functions they will perform in the database?
▪ How diverse are their jobs?
▪ Do we want users to have view-only access to certain parts of the software, but also be able to update other parts?
▪ How do we currently separate our entities?
▪ What should we name the security roles so we can remember them?
When in doubt, assign view-only access. A user will ask for permission when needed, but will not tell you if they can access areas they shouldn’t.
Although multiple security roles can be assigned to a user, MRI Software recommends that a single role be used if available. Be aware, if a user is assigned to multiple roles, the most permissive combination of access rights applies.