About security classes and roles in Contract Management
Contract Management includes several predefined security classes that allow access to various areas within the application. Security classes are then assigned to roles.
Security classes
The following table lists the security classes that are used for Contract Management.
Some security classes have specific conditions that restrict access to some actions. For more detailed information on each security class, view the security class configuration.
| Security class | Description |
|---|---|
| AccessToAllActions_ST |
Lets a user perform all actions for all menu items in the Strategic Sourcing and Contract Management modules, including all setup, spend analysis, and supplier information. All actions are also available for actors, agents, actor context, and state/province menu items. This security class is commonly only used for Administrators. |
| CMActivateContract_ST | Allows a user to perform the activate action for a contract. |
| CMAnalyzeContract_ST | Lets a user access and use the contract negotation process. |
| CMCreateEventFromContract_ST | Allows a user to create events from contracts. |
| CMCreateItem_ST | Allows access to the processes to create items from contracts and mass create items. |
| CMLoadRebateInformation_ST | Lets a user run the actions that create rebate information for rebate contracts. |
| CMLoadTierInformation_ST | Lets a user run the actions that load data for running the reports to display tier purchases for manufacturer contracts. |
| CMManagerMenu_ST | Allows the contract manager to access the proper menu items. |
| CMManualApproval_ST | Allows manual approval of contract processes when process flow is not available. |
| CMProcessContract_ST | Allows user to perform all basic contract processing. |
| CMProcessContractImport_ST | Lets a user perform all processing for contract imports. |
| CMProcessorMenu_ST | Lets the contract processor to access the proper menu items. |
| CMProcessVendorItem_ST | Lets a user update vendor items using actions such as replace and inactivate. |
| CMRunApplicationUpdates_ST | Allows the user to run menu items in the application updates menu, which are mainly for upgrades and changes to system. |
| CMSetupAdmin_ST | Allows the administrator to fully access all contract management setup menu items. |
| CMViewContract_ST | Gives a user inquiry only access to all contract information. |
| SCMCommonCreateSpend_ST | Allows user to run actions that create spend analysis data. |
| SCMCommonMaintainTAndC_ST | Allows user to process articles and terms and conditions in the repository. |
| SCMCommonSupplierBasicProcessing_ST | Allows user to do all processing for suppliers except for vendor creation ,manual approval, and performance evaluation. |
| SCMCommonSupplierCreateVendor_ST | Allows user to perform the create vendor action for suppliers. |
| SCMCommonSupplierManualApproval_ST | Allows the user to do manual approval of supplier approval items, in case this is needed to override process flow approvals. |
| SCMCommonSupplierPerformEvaluation_ST | Allows user to create and enter supplier performance evaluation. |
| SCMCommonSupplierProcessInvoices_ST | Allows user to do final steps in supplier created invoice process. |
| SCMCommonSupplierVendorCompare_ST | Allows user to create supplier vendor compare records and maintain them. |
| SCMCommonViewInformation_ST | Allows user to access all records needed for selects and inquiries. |
| SCMCommonViewQueues_ST | Allows user to access classic transaction, Email, and Process Flow queues |
| SCMCommonViewSpend_ST | Allows a user to view all the spend analysis information,. |
Roles
Actors need to be assigned to roles in Contract Management in order for users to be able to access the application. The following is a list of roles for you to consider using in Contract Management.
| Role | Suggested use |
|---|---|
| Admin_ST | Admin is able to perform all actions within the productline (data area). This role may be viewed the same as a System Administrator. Admin may be involved in setting up role assignments, but security setup may be performed by a Security Administrator. |
| ContractAdministrator_ST | Performs setup and processing actions not directly pertaining to contract processing. |
| ContractManager_ST | Performs all actions pertaining to contract processing. Procurement Actor Context is needed for this role. |
| ContractProcessor_ST | Can perform all basic processes pertaining to contract processing. Procurement Actor Context is needed for this role. |
| ContractViewer_ST | Can inquire upon all contract information. |
| SpendAnalysisViewer_ST | An additional role you may want to assign to a person who can view spend analysis results and run spend analysis load programs. |
| TermsManager_ST | Can maintain articles and terms in the repository, and view articles and terms on contracts. |
Templates for security class and role assignments
There are no specific rules regarding the assignment of security classes to roles; you can assign any class to any role you create. However, the delivered assignments are samples of starting points for your security implementation.
A spreadsheet detailing the delivered security class and security role templates for all security classes and roles is available on the Lawson Knowledge Base. The document title is "Landmark Security Templates for S3 Supply Chain Applications."
Associate roles to application functions
A spreadsheet that associates the delivered security roles to application features is available on the Lawson Knowledge Base. The document title is "Procurement Roles and Associated Processes" (KB# 5447863).