About user access management
About user access management
User Access Management enables authorized users to associate business objects at a very granular level, making it possible to assign very specific access privileges to users. Authorized users set up organizations, teams, users, and context types and values in order to group them together into logical units and assign roles.
For example, an authorized administrator adds the team Payables and associates it with the organization Accounting. The user John Hancock is associated with the Payables team. The Payables team is assigned the role of Budget Admin. The context type and value are set to facility and North Carolina, respectively. So John Hancock is associated with Accounting and Payables and performs Budget Admin tasks associated with the North Carolina facility.
User access management components
- Organizations: An organization is the top layer. The name can reflect departments, business units, businesses, or any other grouping to which a team might belong.
- Teams: Teams belong to organizations. Teams are associated with defined roles, users, context types, and context values.
- Users: Are individuals with defined role names and access privileges. Users are associated with teams.
- Context types: Context types enable authorized users to associate business objects at a more granular level. Users get access permissions based on their organization's roles, and those permissions are further defined by context type and context value. For example, a context type might be Project or Location and have an associated context value. Context types can be associated with one or multiple context values.
- Context values: These values are associated with a specific context type. For example, the context type Project has a context value of A to identify Project A. Or the context type Location could be US for the context type-value association of Location US. Context values can be associated with one and only one context type.
- Roles: MCMP functions are available to users depending on their user roles. Users can have one or multiple user roles. Apply roles to teams to define what functions team members can perform.
- API Keys: See API Key Management.
See Also