Security restrictions
An administrator can create restriction groups that can be assigned to users. Restriction groups are an optional user attribute that define which data types a user can access. A single restriction group can be assigned to multiple users. If a user does not have a restriction group, the user can access all the data. A modification in the restriction group definition can impact every user assigned to that group.
Using a restriction group, the administrator can restrict a user or a group of users to a specific set of data. For example, a user's access can be restricted to data only for a specific facility and ship to combination.
Restrictions for a level are based on the restriction implemented at a higher level:
- To implement a restriction at ship to level, you must first implement a restriction at the facility level.
- To implement a restriction at a facility level, you must first implement a restriction at the customer level.