Permissions Type

These permission types are available:

• Authorization Role
  A type of permission assigned to a set of employees with the same role. In the Authorization Roles (tcsec0120m000) session, you can also perform these actions:

  • Link a defined authorization role to an AMS or EM role (LN user authorizations (OP-CE)). To allow employees with the Project Manager role to modify their own projects, you must set the Authorization Level to Project Manager role and link the same to all the Project Managers.
  • Generate AMS roles based on SEC authorization roles. Consequently, roles that are created in the Authorization Roles (tcsec0120m000)session can be assigned to users in IFS.
• Authorization Policy

  Authorization policies are used to define corporate policies for data authorization for a group of employees, irrespective of the employee role. A project is created to register an internal task in Hours Accounting (holidays or internal meetings) and all the employees are allowed to use this project. An authorization policy is linked to all the employees. See Authorization Policies (tcsec0150m000)

  .
• Assigned Rule

  A new, additional, or exceptional permission, specific to an employee that can be assigned without changing an existing authorization role or policy. Use the Assigned Rules (tcsec0160m000) session to view and maintain rules defined for an employee. For example, when employee A goes on a holiday, you can assign a rule to another employee to provide access to the projects or purchase orders of employee A.

To set an assigned rule to Expired:

• Select the Expired check box.
• If the assigned rule is set to Expired, you cannot modify the value of the Description field and the permissions cannot be applied.