Question
EAI Systems
SA
Last activity: 25 Jul 2018 2:48 EDT
Restricting end user from adding and deleting access groups and Operator ids
Hi all,
Can anyone tell me how to restrict users from adding and deleting access groups and Operator ids?
Thanks in advance
Regards,
Shweta V Singh.
***Edited by Moderator Marissa to update categories***
-
Like (0)
-
Share this page Facebook Twitter LinkedIn Email Copying... Copied!
Pegasystems Inc.
IN
Add privilege and restrict the users from editing it.
In RARO, of Data-Admin-Operator-ID modify the write permissions by having a when condition. When condition will check for above privilege and allow users only with that privilege to modify operator id.
EAI Systems
SA
can u tell me, how to implement it?
Pegasystems Inc.
IN
Refer to PegaRules:User4 access role name (ARO) and check the class Data-Admin-Operator-ID. See attached image. you can open this from, Records-->Security-->Access role name.
Open ARO of your application and do the same change there for the roles you want change.
Pegasystems Inc.
IN
Hi Shweta,
I have tried similar thing based on Anil's Instruction for learning purpose and you can refer for more undersatnding.
@vanaa Please correct If i am doing something wrong.
1. Created a Privilege named TestPrivilege.
2. Created a access role(in case it is not there) name ASDSalesManager. Cloned it with Administrator role.
3. Clicked on Data-Admin-OperatorID ARO and modified the when rule of WriteInstances . There is a OOTB function "HavePrivilege" which i have used to check the privilege as Anil mentioned to check.
Hi Shweta,
I have tried similar thing based on Anil's Instruction for learning purpose and you can refer for more undersatnding.
@vanaa Please correct If i am doing something wrong.
1. Created a Privilege named TestPrivilege.
2. Created a access role(in case it is not there) name ASDSalesManager. Cloned it with Administrator role.
3. Clicked on Data-Admin-OperatorID ARO and modified the when rule of WriteInstances . There is a OOTB function "HavePrivilege" which i have used to check the privilege as Anil mentioned to check.
Also given the TestPrivilege in the Security tab of the ARO
4. Now changed the role of Acces Group to newly created Acess Role
thank you
-Abhishek
Pegasystems Inc.
IN
Yes, above steps are correct. With this it should work.
Also if your access role is a clone of PegaRules:User4, by default those users cannot edit operator id and access groups. If for a different access role you want to customize, follow the above steps. Thanks.
HCL Technologies
IN
Hi,
I want to restrict an operator from creating operator id's and modifying operator id's. I have created an access group and cloned the PegaRules:User4 role. But now i'm not able to view any records while logging in with that operator id. Why this is happening and how to solve this?
CollabPartnerz
IN
Hi
Did you marked acess for create/update/delele/modify operations as 0 in ARO of that operator?