Assigning User Access to Security Classes

After you define users and groups and security classes, you can specify the level of access each user and group has to each security class in the application and set up e-mail alerts.

Table 4. User Access Level

Access Level	Description
None	No access to elements assigned to the security class.
Metadata	View a specified member in a list but cannot view or modify data for the member.
Read	View data for elements assigned to the security class but cannot promote or reject.
Promote	View data for elements assigned to the security class and can promote or reject.
All	Modify data for elements assigned to the security class and can promote and reject.

You can use the Pivot Table feature to toggle between two views for assigning access. For example, if you have users and groups on rows and security classes on columns and click Pivot Table, users and groups will be on columns and security classes on rows.

Note:

A user assigned to the Application Administrator role for an application has access to all information in the application.

To assign user access to security classes:

From the Shared Services Console, expand Application Groups, right-click the application name, select Assign Access Control, and then Assign Access.
Select cells for which to assign access rights.
Tip:
Use the Shift and Ctrl keys to select multiple cells. Select a column or row by clicking in the column or row header.
From Access Rights, select the access level to assign.
Note:
See Table 4, User Access Level .
Click to apply the level to the selected cells.
Optional: To add an e-mail alert, select cells in the table and click Add Alert.
Caution!
The alerting process uses the e-mail addresses stored in the authentication files, such as MSAD, LDAP, or Native Directory. See Setting Up E-mail Alerting.
Note:
To remove e-mail alerts, select the cell and click Remove Alert.
Click Save.
Click Next or Security Report.