Security restrictions

An administrator can create restriction groups that can be assigned to users. Restriction groups are an optional user attribute that define which data types a user can access. A single restriction group can be assigned to multiple users. If a user does not have a restriction group assigned, the user can access all the data. A change in the restriction group definition can impact every user assigned to that group.

Using a restriction group, the administrator can restrict a user or a group of users to a specific set of data. For example, a user's access can be restricted to only the data for a specific facility and ship to combination.

Restrictions for a level are dependent on the restriction implemented at a higher level:

• To implement a restriction at ship to level, you must first implement a restriction at the facility level.
• To implement a restriction at a facility level, you must first implement a restriction at the customer level.