Restricted classifications

You can use security profiles that are based on customer settings to restrict users from viewing classifications that are not relevant to them.

Security profiles that are based on customer settings create data restrictions. If no profile is set, then no data is restricted. Therefore, a user who does not belong to any security group with a customer setting can see global classifications and all customer-specific classifications.

A user who belongs to a security group that is authorized only for unrestricted, customer-level information, can view only global classifications.

For example, a classification is associated with Customer 1. Users are able to see this classification if they belong to a security group with one of these profiles:

• The security group is authorized for all customers.
• The security group is authorized for customers on the person record of the user. Customer 1 or the parent of Customer 1 is specified as a customer on the person record of the user.
• The security group is authorized for customers in the customer access list of the user. Customer 1 or the parent of Customer 1 is specified in the customer access list on the person record of the user.
• The security group is authorized for customers that are specified in the Security Groups application. Customer 1 or the parent of Customer 1 is specified in that application.

Users with a security profile that is based on customer settings do not see customer-specific classifications that have no associated customers. For example, ITorHARDWAREorDESKTOP COMPUTER is a customer-specific classification with no associated customers, so users cannot see this classification.