Defining Project Security

To set up project row-level security, use the following components:

  • Security Profile (PROJ_SEC_PROFILE).

  • Row Level Security Options (SECURITY_OPTIONS)

  • Project Security (SEC_PROJECT).

Page Name

Definition Name

Usage

Security Profile Page

PROJ_SEC_PROFILE

Create project security profiles.

Security Options

SECURITY_OPTIONS

Define the type of security to implement.

See Defining Team-Based Security

Project Security

SEC_PROJLST_OPR

Assign a user to a role/security profile for each project when Project Costing is not installed. This page is read-only when Project Costing is installed and you implement team-based security.

See Defining Team-Based Security

Project Security

SEC_PROJECT_OPR

Define tree-based security for a specific user.

See, Defining User, Tree-Based Security.

Project Security

SEC_PROJLST_CLS

Specify projects and corresponding roles/security profiles for which access is defined by a permission list.

See Defining Permission List, List-Based Security.

Project Security

SEC_PROJECT_CLS

Define security based on a permission list for roles/security profiles that are assigned to projects belonging to the same tree.

See Defining Permission List, Tree-Based Security.

Use the Security Profile page (PROJ_SEC_PROFILE) to create project security profiles.

Navigation:

Set Up Financials/Supply Chain > Product Related > Project Costing > General Options > Setup PC Security Profiles

This example illustrates the fields and controls on the Security Profile page. You can find definitions for the fields and controls later on this page.

 Security Profile page

Field or Control

Description

Security Profile and Description

Enter a security profile name and description. If you create a unique security profile for each project role, you can enter a security profile name that matches the project role name. If you create a security profile to associate with multiple roles, you can enter a generic security profile name.

Access to Project and Access to Activity

Select an access type. Available options are No Access, Read only, or Read/Write.

Analysis Group

Enter one or more analysis groups to grant the security profile access to transactions with analysis types that belong to these groups.

Granting access to transactions automatically permits read and write permissions, and the ability to add and delete rows, unless the analysis type is defined as a secured analysis type.

Secured Analysis Types

You can control the transactions that users can modify by setting up secured analysis types. Transaction rows for secured analysis types appear as read-only on the Transaction List page. Users cannot add or delete transaction rows that belong to secured analysis types, unless the page is opened in the Correct History mode, in which case editing is allowed.

To secure analysis types:

  1. Associate the analysis types that you want to secure with a single analysis group.

  2. Enter the analysis group in the Secured Analysis Types group box on the Installation Options - Project Costing page.

Note: Users with access to the Transaction List page in Correct History mode can modify transactions with secured analysis types.

Use the Security Options page (SECURITY_OPTIONS) to define the type of security to implement.

Navigation:

Setup Financials/Supply Chain > Security > Security Options > Security Options

To implement team-based security:

  1. Access the Security Options page

  2. Select User ID Level Security in the Type of Security group box.

  3. Select Project in the Secured Fields group box.

  4. Select Use list in the Proj Security Type (project security type) field.

  5. Save the page.

If Project Costing is installed the system grants security access to projects based on the project team. Use the Project Security page to view a list of all projects for which the user is a team member.

Use the Project Security page (SEC_PROJLST_OPR) to assign a user to a role/security profile for each project when Project Costing is not installed. This page is read-only when Project Costing is installed and you have implement team-based security.

Navigation:

Setup Financials/Supply Chain > Security > Setup Project Security

If Project Costing is not installed:

  1. Access the Project Security page for a user.

  2. Enter the business unit and project ID of the projects to which you are providing access.

  3. Select the security profile for the selected user in this project.

  4. Save the page.

To implement user, tree-based security:

Use the Security Options page (SECURITY_OPTIONS) to define the type of security to implement.

Navigation:

Setup Financials/Supply Chain > Security > Security Options > Security Options

  1. Access the Security Options page.

  2. Select User ID Level Security in the Type of Security group box.

  3. Select Project in the Secured Fields group box.

  4. Select Use tree in the Proj Security Type field.

  5. Save the page.

Use the Project Security page (SEC_PROJECT_OPR) to define tree-based security for a specific user.

Navigation:

Setup Financials/Supply Chain > Security > Setup Project Security

  1. Enter the tree business unit, tree name, and tree effective date for the tree that you are securing.

  2. Select the project ID (tree node) in the User Role in Projects grid to define the security for the selected user.

  3. Select the project role of the selected user in this project.

  4. Save the page.

To implement permission list, list-based security:

Use the Security Options page (SECURITY_OPTIONS) to define the type of security to implement.

Navigation:

Setup Financials/Supply Chain > Security > Security Options > Security Options

  1. Access the Security Options page

  2. Select Permission List Level Security from the Type of Security group box.

  3. Select Project in the Secured Fields group box.

  4. Select Use list in the Proj Security Type field.

  5. Save the page.

Use the Project Security page (SEC_PROJLST_CLS) to specify projects and corresponding roles/security profiles for which access is defined by a permission list and roles/security profiles that are assigned to projects belonging to the same tree.

Navigation:

Setup Financials/Supply Chain > Security > Setup Project Security

  1. For users who have access to the selected permission list, select the business unit and project ID to which you are providing access.

  2. Select the project role for the permission list in the selected project.

  3. Save the page.

Note: Permission list, list-based security can be defined from either the Project Security page or the Security by Permission List page that are accessible from the Project General component when permission list, list based security has been implemented. On the Project Security page, define security to multiple projects based on a permission list. On the General Information - Security by Permission List page, define security for a single project. Typically, this is done by a project manager or administrator who has access to the Project General component. The General Information - Security by Permission List page is visible only if the Security Options page is set up for permission list, list-based security, and only if Project Costing is installed.

To implement permission list, tree-based security:

  1. Access the Security Options page (Setup Financials/Supply Chain > Security > Security Options > Security Options).

  2. Select Permission List Level Security from the Type of Security group box.

  3. In the Secured Fields group box, check Project.

  4. Select Use tree in the Proj Security Type field.

  5. Save the page.

  6. Access the Project Security page for the permission list for which you are defining security (Setup Financials/Supply Chain > Security > Setup Project Security)

  7. Enter the tree business unit, tree name, and tree effective date for the tree that you are securing.

  8. Select the project ID (tree node) that is being secured in the Operator Class Role in Projects grid.

  9. Select the project role of the permission list in the selected project.

  10. Save the page.