Grant authorization carefully to all appropriate PPM users.
To help you with security planning, consider the following authorization-related options:
- Use Module Access rights to limit access to PPM modules.
- Organize all your entities and your security hierarchy according to your organization charts. Then try to define your security at the organization unit level. Try to set up security at role and group level before setting it up at the user level.
- By default security is defined by project. Assign the "Category defines the data security" property when you want to define security vertically, rather than by portfolio or item.
- Be careful when defining functions, workflows, and query-based portfolios so as not to compromise data.
- The Propose module allows users to sign in to the 'guest' without a password. Unregistered users get limited access to the application for the purpose of filling out a predefined form. Workers, clients, or customers can use Propose to capture ideas, conduct surveys, or enter requests via web forms. Enabling this module requires privileges. Also the propose user access is limited to the corresponding page shared by the PPM administrator. For more details about the propose module, refer to the Online Help or User Guide.