When using the system, it may become apparent that certain users do not have the proper access to the system required for their job. They may not be able to view a specific screen and/or they may not have the needed level of permission to functionality. Conversely, they may have access to screens and/or levels of functionality they should not have. The following pages provide information to help resolve these issues.
Note: For authorization to be granted for any policy of the system, all necessary permissions must exist in one role. For example, there cannot be Read access on one role with the desired data access, but Edit access on another role which does not have the desired data access. Otherwise, the users will only have read access.
When troubleshooting any type of authorization issue, the first step is to treat each role as if it were the ONLY role to grant the user access to the feature, and then investigate the issue from that standpoint.
Related Reports and Screens:
The following reports/screens can also be used to troubleshoot issues with roles. Reports are located under the Reports section>System card. Click on the links below for more information on the report and a screen print of the report:
This report shows all assigned policies for a given authorization role, and the levels of access for each policy. |
|
This report shows all the assignment roles and the users/employees assigned to that role. |
|
This report lists all the roles that grant access to a specific policy, including non-standard roles. The individual roles displayed in this report can be expanded to list the details of the policy. |
|
This report lists the policy differences between two selected authorization roles. |
|
This report lists the authorization policy information for the specified employee, indicating the level of access to each of the screens/fields allowed to the employee. |
|
This report lists policies where access is given to a screen or policy, but not to the "parent" policy. The parent policy is a policy that is listed at a higher structure level in the Role Authorization Control Hierarchy tree. Users may not be able to get to the screen they have permission to. |
|
This report shows edits made to authorization assignment data during the indicated date range. Information includes new assignments and edits to assignments for roles. Note: This report is listed on the Audit card. |
|
This screen shows the roles currently assigned to an employee. It also displays the policies assigned to an employee and the role(s) granting access to the policies. |