Bookshelf v7.5: Single-Organization and Multiple-Organization Access Control

Security Guide for Siebel eBusiness Applications > Access Control > Organization-Based Access Control >

Single-Organization and Multiple-Organization Access Control

Depending on the type of data, you can associate one or more organizations to individual data. The user can see data that is associated with the user's active organization. For example, in the All Service Requests view, a user can see all the service requests associated with the user's active organization.

For data that can be associated with multiple organizations, one of the organizations is designated as the primary organization.

The primary organization is a factor in suborganization access control, but not in multiple-organization access control.

Table 20 lists data on which you can apply organization-based access control and whether a single organization or multiple organizations can be associated with the data.

Table 20. Organization-Enabled Data

Object Type

Object

Relationship

Customer data

Account

Multiple

Competitor

Multiple

Contact

Multiple

Opportunity

Multiple

Order

Multiple

Partner

Multiple

Quote

Multiple

Service Request

Multiple

Referential data

SmartScript

Multiple

Literature

Multiple

Price List

Multiple

Product

Multiple

Catalog

Multiple

Administrative data

Employee

Single

Division

Single

Position

Single

Responsibility

Multiple

Other

Cost list/Rate list

Multiple

Assignment Manager

Assignment Manager

Enabled

NOTE: Customizable products that you create with Siebel eConfigurator include some exceptions to organizational access rules. For information about customizable product visibility, see Product Administration Guide.

All (but not All across) is frequently in the titles of views applying single or multiple-organization access control. For example, the All Contacts view applies single-organization access control, and the All Product Defects view applies multiple-organization access control. However, All does not always imply single- or multiple-organization access control. Some All views apply All access control. For example, the All Service Requests view applies All access control.

A business component's view modes determine whether single-organization or multiple-organization access control can be applied in a view that is based on the business component.

To have single-organization access control available, a business component must have a view mode (typically Organization) of owner type Organization with an entry in the Visibility Field column (instead of the Visibility MVField column).

To have multiple-organization access control available, a business component must have a view mode (typically Organization) of owner type Organization with entries in the Visibility MVField and Visibility MVLink columns (instead of the Visibility Field column).

For information about All access control, see All Access Control.

For information about business component view modes, see Business Component View Modes.

For information about implementing access control in a view, see View Access Control Properties.

Table 20. Organization-Enabled Data
Object Type	Object	Relationship
Customer data	Account	Multiple
Competitor	Multiple
Contact	Multiple
Opportunity	Multiple
Order	Multiple
Partner	Multiple
Quote	Multiple
Service Request	Multiple
Referential data	SmartScript	Multiple
Literature	Multiple
Price List	Multiple
Product	Multiple
Catalog	Multiple
Administrative data	Employee	Single
Division	Single
Position	Single
Responsibility	Multiple
Other	Cost list/Rate list	Multiple
Assignment Manager	Assignment Manager	Enabled

Security Guide for Siebel eBusiness Applications
Published: 23 June 2003