Manage Role Based Security
On the Manage Role Based Security page, Groups and Roles (permissions) are assigned to Users to determine rights.. These groups and roles can be modified by going into the Manage Groups and Roles section on the Manage Role Based Security page. The following table defines the standard permission levels that can be used in Locations and Persons.
The asterisk mark (*) denotes a role that is dynamic. A dynamic role is defined as "the user will inherit permissions to complete the task". If the asterisk is not there, then the role will be static.
Role Based Security Token Definitions
Administration Token Definitions
| Token Name | Token Definition |
|---|---|
| Assign-Person-Location-Groups | Allows the Administrator the ability to assign person to locations and groups |
| Can save public searches | Allows the user to create, edit and save public searches |
| Can-Be-Supervisor | Allows the user to be a person supervisor |
| Can View Risk Intelligence | Allows the user to see the following: Overview Icon, Risk Intelligence Module item and the Dashboard on the Home page (if defaulted to the Switchboard). |
| Can View Search | Allows the user to see the search icon and the ability to search. |
| Checklist-View | Allows the user to add, edit, delete checklists |
| Copy BadgerMail Template | Allows the user to copy a BadgerMail Template |
| DashboardAdmin | Allows the user to create, edit and delete dashboards |
| Delegate-Authority | Allows the user to delegate assignments when gone |
| Download_Template | Allows the user to download template in Resolution Tracker to quickly load recommendation records |
| Locations-View | Allows the user to add and edit the location hierarchy |
| Manage-Audit-Ranking | Allows the user to add and edit the Audit Ranking Matrix |
| Manage-Audit-Templates | Allows the user to view and configure the Audit Templates |
| Manage-BadgerMail | Allows the user to configure and edit BadgerMails |
| Manage Equipment | When the user is added to any location, the user can add, edit and inactivate the equipment in Administration and in add equipment to Modules |
| Manage-Functional-Role | Allows the user to add, edit, delete functional and assign persons, locations and role based security to each role |
| Manage-Group-Roles | Allows the user to add, edit, delete, and save groups in Role Based Security |
| Manage-Reports | Allows the user to add, edit, delete and create API links (API is a configurable item) |
| Manage-Resources | Allows the user to localize (rename) labels, buttons and messages. |
| Manage-Risk-Assessor- Methodologies | Allows the user to add and edit Risk Assessor methodologies |
| Manage-Risk-Matrix | Allows the user to configure the risk matrix |
| Manage-Role-Tokens | Allows the user to add, edit, and save roles in Role Based Security |
| OII-TreatmentProvider- View | Allows the user to add OII Treatment Providers |
| Person-View | Allows the user the add and edit Persons |
| Portal-User | Assigns a portal license to a user |
| Risk-Intelligence-User | Assigns a Risk IntelligencelLicense to a user |
| RoleBaseSecurity-View | Allows the user to view Role Based Security in Administration |
| Selection-View | Allows the user to add and edit the Selection libraries |
| SystemMaintenance- View | Allows the user to add license keys, initialize keyword search and update languages |
| WorkFlows-View | Allows the user to view the workflows and configure auto-complete in Resolution Tracker |
Auditor Token Definitions
| Token Name | Token Definition |
|---|---|
| AUD-Approve | Allows the user to approve audits |
| AUD-Audit-Planning | Allows the user to create audit plans |
| AUD-Can-Approve-Plan | Allows the user to approve audit plans |
| AUD-Can-Be-Program- Owner | Allows the user to be selected as program owner |
| AUD-Can-Be-Protocol-Assignee | Allows the user to be selected as a protocol assignee |
| AUD-Can-Be-Team- Member | Allows the user to be selected as team member |
| AUD-Can-Confirm-Plan | Allows the user to confirm an audit plan |
| AUD-Can-Edit-Finding | Allows user to edit the findings in the Finding tab of an audit |
| AUD-Can-Lead-Audit | Allows the user to be selected as Lead Auditor |
| AUD-Can-Sponsor-Audit | Allows the user to be selected as audit Sponsor |
| AUD-Can-View-Audit | Allows the user to view audits |
| AUD-Can-View-Confidential- Audit | Allows the user to view confidential audits |
| AUD-Deny | Allows the user to deny the audit |
| Auditor-User | Assigns an Auditor license to the user |
| AUD-Manage-Audit- Plans | Allows the user to create, edit or delete an audit plan |
| AUD-Proposal-Add | Allows the user to create an audit record |
| AUD-Proposal-Delete | Allows the user to delete an audit record |
| AUD-Proposal-Edit | Allows the user to edit the available audit details |
| AUD-Proposal- SendForApproval | Allows the user to send the audit for approval |
| AUD-Reopen | Allows the user to re-open an audit record |
| Can-Upload-Download- Audit-Template | Allows the user to easily download the audit template and upload audits to the system through the use of an audit template |
Investigator Token Definitions
| Token Name | Token Definition | Version Added |
|---|---|---|
| Add-TeamMember | Allows the user to add team members to an investigation | |
| Add-New-Equipment-Incident | Allows the user to add Equipment directly in the incident Equipment Tab | |
| Can-Be-Team-Lead | Allows the user to be selected as Team Lead of an investigation | |
| Can-Be-Investigator-Action-Assignee | Allows users to show up in the drop down for incident action | 12.23 |
| Can-Be-Investigator-Checklist-Assignee | Allows users to show up in the drop down for incident checklists | |
| Can-Cancel-Investigations | Allows user to view and select the Cancel Investigation record option | |
| Can-Edit-Incident-Criticality | Allows the user to edit the Incident Criticality field | |
| Can-Edit-Injury-Illness | Allows the user to view and edit an injury illness | |
| Can-Export-Recommendations-To-Tracker | Allows user to export recommended actions into Resolution Tracker | |
| Can-View-Injury-Illness | Allows the user to view the injury illness | |
| CostConfidential | Allows the user to view confidential costs | |
| Delete-Injury-Case | Allows the user to delete an injury case | |
| Edit_Incident_Checklist_Question_Response | Allows the user to edit checklist question responses | 12.25.1 |
| Finalized Report | Allows the user to finalize (Report Issued) an investigation | |
| Incident-Create | Allows the user to create an incident | |
| Incident-Edit | Allows the user to edit incident details | |
| Incident-View Report | Allows the user to view the incident and investigation report | |
| Investigation-Complete | Allows the user to complete an investigation (send to for final approval) | |
| Investigator-User | Assigns an Investigator license to the user | |
| ReAssign-Responsibility-From-Inactive-To-Active | Allows the user to change person assignments in Investigator | |
| Record-Confidential | Allows the user to view confidential records | |
| Remove-TeamMember | Allows the user to remove a team member from an investigation | |
| ReOpen-Investigation | Allows the user to re open a closed (Report Issued) investigation | |
| Review-Close Incident | Allows the user to close an incident prior to an investigation being started | |
| Review-Edit Investigation | Allows a user to edit investigation details | |
| Review-Link to Exist Incident | Allows the user to link existing incidents to an investigation (functionality is not yet enabled) | |
| Review-Reopen Incident | Allows the user to re-open a closed incident | |
| Review-Start Investigation | Allows the user to start an investigation | |
| Submit Incident for Approval | Allows the user to submit an incident (Initial Approval) for or investigation for final approval |
OII Activities Token Definitions
| Token Name | Token Definition |
|---|---|
| OII-Can-Give-First-Aid | Allows the user to appear in the drop down list for On site First Aid Treatment Given By |
| OII-Privacy-Case | Allows the user to edit and view privacy case(s) |
| Can-Edit-Oii-Case | Allows the user to view and edit an OII case in the OII Module |
| Can-View-Oii-Case | Allows the user to view the OIIcase in the OII Module |
| OII-User | Assigns an OII license to the user |
Recurring Activities Token Definitions
| Token Name | Token Definition |
|---|---|
| Can-Download-Template | Allows user to view and select to download the mass upload template for Recurring Activities |
| RACT-Reassign-Occurrence | Allows the user to reassign a task/recurring activity |
| RACT-Schedule-Activity | Allows the user to schedule a task/recurring activity |
| Recurring-Activities-User | Assigns a Recurring Activities license to the user |
Resolution Tracker Token Definitions
| Token Name | Token Definition | Version Added |
|---|---|---|
| Action_Edit_Attachments | Allows the user to add /edit attachments to an action | |
| Action-Add | Allows the user to add additional action (s) | |
| Action-Complete-Step | Allows the user to complete the action workflow step | |
| Action-Edit-Item | Allows the user to edit fields in the actions assigned only to them excluding the description, target date, and assignee | |
| Action-Edit-Target-Date | Allows the user to edit the target date field of the action | |
| Action-Set-Actionee | Allows the user to be assigned as an actionee | |
| Action-Set-Required-Item | Allows the user to set attachment as a required item on an action | |
| Action-Set-Status-To- Abandon | Allows the user to set the action status to Abandon | |
| Action-Set-Status-To- Awaiting-Verification | Allows the user to set the action status to Awaiting Verification | |
| Action-Set-Status-To- Closed | Allows the user to set the action status to Closed | |
| Action-Set-Status-To- Reopen | Allows the user to reopen a closed action | |
| Action-Set-Verifier | Allows the user to select the verifier of an action | |
| Action-Verify | Allows the user to verify the action | |
| Action-View-Items | Allows the user to view all actions assigned to them and someone else | |
| Add-New-Equipment-Tracker | Allows the user to add equipment not in the application in the tracker module | |
| Approval-Add-Or- Remove-Committee- Members | Allows the user to add or delete committee members | |
| Approval-Complete-Step | Allows users to complete the approval step | |
| Approval-Set-Approval- Status | Allows the user to set the approval status for a record | |
| Approval-Set-Justification | Allows the user to add justification on the approval step | |
| Approval-Set-Overall- Assigned-To | Allows the user to select the overall approver | |
| Approval-Set-Resolution | Allows the user to select the resolution (if configured) | |
| Approval-Set-Target- Date | Allows the user to set the target date for the approval | |
| Approval-View-Step | Allows the user to view the approval step | |
| Can be eMOC approver | Allows the user to be selected from the list as an eMOC approver | |
| Can be overall approver | Allows the user to be assigned as Overall Approver (in Approval step) and Single Approver (in Startup Approval step) | |
| Can Edit Expiration Date After Draft | Allows the user to edit the Expiration date in the temporary details after the record leaves draft state | |
| Can Edit Termination Date After Draft | Allows the user to edit the Termination date in the temporary details after the record leaves draft state | |
| Can Send Record Back | Allows the user to send a record back for more information in an approval step to a specific step in the workflow. | |
| Can_Activate_MOC_ From_Rec | Allows the user to activate an MOC from a REC | |
| Can-Be-Action-Assignee | Allows the user to be selected as an action assignee | |
| Can-Be-Checklist- Assignee | Allows the user to be assigned to a checklist item | |
| Can-Be-Committee- Member | Allows the user to be assigned as a committee member | |
| Can-Be-Responsible-Person | Allows the user to selected as responsible person for a record | |
| Cancel-Tracker-Work- Request | Allows the user to cancel the record | |
| Can-Upload-Rec | Allows the user to quickly upload RECs using the REC template | |
| Can-View-Confidential | Allows the user to view confidential records, view the confidential box and any associated drop downs. | |
| Checklist-Add-Item | Allows the user to add additional checklist items | |
| Checklist-Assign-Item | Allows the user to assign checklist items | |
| Checklist-Close-Item | Allows the user to close a checklist items | |
| Checklist-Complete-Step | Allows the user to complete the checklist step | |
| Checklist-Edit-Action | Allows the user to add/edit action at checklist step and select which step to send the action to (Action or Post Startup Action) for their checklist items. | |
| Checklist-Edit-Attachments | Allows the user to add/edit attachment (s) to a checklist item | |
| Checklist-Edit-Response | Allows the user to respond to checklist items | 12.25 |
| Checklist-Edit-Worfklow-Step | Allows the user to edit Workflow Step | |
| Checklist-Mass-Assign | Allows the user to mass assign checklist templates | |
| Checklist-Reopen-Item | Allows the user to reopen a closed checklist item | |
| Checklist-Select-Checklists | Allows the user to select available checklists | |
| Checklist-Set-Required Item | Allows the user to set checklist questions and attachments as required | |
| Checklist-Set-Target- Date | Allows the user to set checklist item target date | |
| Checklist-View-Items | Allows the user to view checklist items assigned to all checklist item assignees | |
| Create-EMOC | Allows the user to create an EMOC (Emergency MOC) | |
| Edit_Attachments_Throughout_Workflow | allows a user to edit or delete existing attachments or add new attachments in the proposal step during the entire workflow | |
| Edit-Basis-Throughout-Workflow | Allows the user to edit the basis field in Resolution Tracker throughout the work flow | |
| Edit-Equipment-Throughout-Workflow | Allows the user to edit the equipment tab in Resolution Tracker throughout the work flow | |
| Edit-Priority-Throughout-Workflow | Allows the user to edit the priority field in Resolution Tracker throughout the work flow | |
| Edit-RiskRanking-Throughout-Workflow | Allows the user to edit the risk ranking field in Resolution Tracker throughout the work flow | |
| Proposal View Attachments Tab | Allows the user to view the attachment tab | |
| Proposal-Accept | Allows the user to accept the record into the system | |
| Proposal-Add | Allows the user to add a record | |
| Proposal-Can-Attach | Allows the user to add attachment on the proposal step after the approval and throughout the record | |
| Proposal-Delete | Allows the user to delete the record | |
| Proposal-Edit | Allows the user to edit the record | |
| Proposal-Edit_Title | Allows the user to edit the title of the record after approval step | |
| Proposal-Edit-Target-Closure-Date | Allows the user to edit the target closure date of the record after approval step | |
| Proposal-Mass-Decision | Allows the user to accept/delete multiple records at one time | |
| Proposal-SendForAcceptance | Allows the user to send the record for acceptance | |
| Reopen-Approval-Step | Allows the user to reopen closed approval steps | |
| Reopen-Step | Allows users to reopen closed steps in the workflow, reopen canceled records, and restore records on hold | |
| Set Status On Hold | Allows the user to set the record to Hold throughout the workflow | |
| Tracker-Proposal-View | Allows the user to view the record. | |
| Tracker-User | Assigns a Resolution Tracker license to the user |
Risk Assessor Token Definitions
| Token Name | Token Definition |
|---|---|
| Can-Be-Team-Member | Allows the user to be assigned as a team member |
| Can-Moderate-Assessment | Allows the user to be assigned as facilitator/ scribe for the assessment |
| RAS-Approve | Allows the user to approve the risk assessment |
| RAS-Conduct-Begin | Allows the user to begin the Conduct step for a risk assessment |
| RAS-Deny | Allows the user to deny a risk assessment |
| RAS-Proposal-Add | Allows the user to add a risk assessment |
| RAS-Proposal-Delete | Allows the user to delete a risk assessment at Initial Approval |
| RAS-Proposal-Edit | Allows the user to edit the risk assessment |
| RAS-Proposal-Mass- Decision | Allows the user to approve multiple risk assessments at the same time |
| RAS-Proposal- SendForApproval | Allows the user to send the risk assessment for approval |
| RAS-Reopen | Allows the user to reopen a closed risk assessment |
| RAS-View-Report | Allows the user to view risk assessor detailed reports |