In a secure database, Synthesis security groups control what users can see and do in the database. By default, the software includes four predefined security groups: Admin, Power, User and View. The Admin group, which has full permissions throughout the database, can neither be deleted nor have its permissions modified. For the other predefined groups, you can edit their permissions or replace them with new groups that fit the specific way the database will be used. As discussed in Planning Your Security Approach, there are two basic approaches you can use:
Same permissions for all public/reference projects – each user account is assigned to one security group and all public/reference projects use the default security option (repository-level security).
Different permissions for different public/reference projects – each user account may be assigned to multiple security groups and each public/reference project may be accessed only by specific security groups and/or users.
You can manage the security groups by choosing File > Manage Repository > Users and Security. (In a secure database, this is available only to users with the "Manage users and logins" permission.)
In the Users and Security window, click the Security tab to see all the security groups that have been created in the database. Use the Add, Edit or Delete buttons below the table to manage the groups.
When you edit a security group, the left side of the Security Group window allows you to choose the permissions, while the right side shows all the users currently assigned to the group.
If you have selected to Associate this security group with an Active Directory group, the list of assigned users can be updated automatically, or you will only be able to manually import/assign users who belong to the designated Active Directory group. (See Associating Security Groups with Active Directory.)
Here is a summary of all the permissions that can be granted to a particular security group.
These permissions apply throughout the database if they are in any of the security groups that the user belongs to. These permissions do not depend on the security settings for a particular project.
Create and own private projects |
You can create and own private projects in the database that are accessible only to you. (Users with the "Manage all private projects" permission can still perform administrative tasks on all private projects, such as editing their properties, locking them, converting them to public projects, etc.) |
Create and own public projects |
You can create and own public projects that other users can view and edit (depending on the project security settings). |
Create and own reference projects |
You can create and own reference projects for sharing resources and FMEAs with other projects in the database (depending on the project security settings). |
Create portal messages |
You can create new messages, and edit or delete the messages you have personally created via the Messages page in My Portal. |
Publish to Synthesis Enterprise Portal |
You can publish your progress, results and analyses from a given project to the Synthesis Enterprise Portal (SEP), making the information accessible from any web-enabled device. |
Create/edit/delete SDW data collections |
You can create, edit and delete data collections in the Synthesis Data Warehouse (SDW). This includes data extraction from XFRACAS as well as custom connections, and confers the ability to create dashboard layouts for custom connections. |
A user can have these permissions in some projects but not others, depending on the project security settings. Regardless of the project security settings, these permissions are always automatically granted to the current project owner.
Read |
You can perform tasks that do not modify the data in the project (e.g., view the analysis, calculate metrics in a Quick Calculation Pad, export data, etc.). |
Create/edit project items |
You can create and edit items in a given project such as folios in Weibull++/ALTA, diagrams in BlockSim, system hierarchy items in Xfmea/RCM++/RBI, etc., as well as update the item properties. |
Create/edit/delete own resources |
You can create Synthesis resources (e.g., URDs, models, etc.) and edit or delete any existing resources you have created. |
Delete project items |
You can delete any item in a given project (e.g., folios in Weibull++/ALTA, diagrams in BlockSim, system hierarchy items in Xfmea/RCM++/RBI, etc.). This permission cannot be assigned unless you also have the "Create/edit project items" permission. |
Create/edit project plans |
You can create and edit project plans for a given project. |
Create/edit/delete local resources |
You can create, edit and delete any local resources in the project (not just the ones that you created). |
Set project security |
You can control who can view and edit a given project. This permission allows you to configure both project security settings and item permissions. |
Edit project properties |
You can use the Project Properties window to edit the name, description, category and other settings of a given project. |
You can:
|
|
Create restore points |
You can utilize restore points for a given project, which are exact replicas of the project at a particular point in time (i.e., backups). |
You can delete a given project. |
|
Manage change logs in Xfmea/RCM++/RBI |
You can enable and manage change logs within a given project. Change logs can be created for FMEAs, DVP&R, Control Plan and P-Diagram analyses in Xfmea, RCM++ and RBI. See Change Logs in the Xfmea/RCM++/RBI documentation. |
Approve change logs in Xfmea/RCM++/RBI |
You can implement electronic approval tracking for change logs within a given project. See Electronic Approval Tracking in the Xfmea/RCM++/RBI documentation. |
These permissions apply throughout the database if they are in any of the security groups that the user belongs to. These permissions do not depend on the security settings for a particular project.
Manage users and logins |
You can:
|
Manage project planning resources and working days |
You can:
|
Manage project/item categories |
You can use the Project/Item Categories window to define the project and item categories that can be used for grouping and filtering projects and items in the database. |
Manage other repository settings |
You can:
|
Create/edit/delete global resources |
You can create, edit and delete any global resources in the project (not just the ones that you created). In addition, you can transfer data from XFRACAS to the SDW. |
Approve actions |
You can review and approve actions, which are Synthesis resources that allow you to track progress made in a project. |
Manage all portal messages |
You can edit or delete any messages that are visible to you via the Messages page in My Portal. This includes any messages for which you are the creator or one of the recipients. |
Manage dashboard layouts |
You can create and save layouts for use in the Dashboard Viewer in Weibull++, BlockSim and RGA. |
Manage profiles and templates in Xfmea/RCM++/RBI |
This permission is available only in enterprise databases. You can:
|
Manage Lambda Predict repository settings |
You can:
|
Manage MPC Settings |
You can:
|
You have all the basic and advanced project-level permissions for public projects in the database. You can also change the project owner for any public project in the database. |
|
Manage all reference projects |
You have all the basic and advanced project-level permissions for reference projects in the database. You can also change the project owner for any reference project in the database. |
Manage all private projects |
You have all the basic and advanced project-level permissions for private projects in the database. You can also change the project owner for any private project in the database. |
© 1992-2017. HBM Prenscia Inc. ALL RIGHTS RESERVED.
E-mail Link |