3.3 Mapping Security Attributes to Organizations and Users
The Mapping Security Attributes to Users functionality/section enables you to determine which security attribute controls a user's access. Using this UI, an Administrator can map both Organizations and Users to different Security attributes.
To map a Security Attribute, follow these steps:
- Log in as the Alert Viewer Administrator. The OFSAAI Applications page is displayed.
- Click Financial Services Money Laundering.
- In the Navigation List, select Behavior Detection, then select Administration. The Anti Money Laundering page is displayed.
- Mouse over the Administration menu, select the User Administration sub-menu, and click Security Attribute Administration. The Security Attribute Administration page is displayed.
- Select user type from Choose User Type drop-down list.
The following options are available:
- Organization
- User
Before proceeding with providing a user access through this UI, ensure that you have created a user and all necessary data is available in the appropriate database tables. - Depending on the User Type you have selected, the available options in the
Choose User drop down list is updated. Select the
user from Choose User drop-down list. The relevant
Security Attribute Administration page is displayed.
Note:
In order to update the user profiles before proceeding with mapping any security attributes, select User from the Choose User Type drop-down list. When selected, all the updates made to all the user profiles through User Maintenance UI are imported from the CSSMS_USR_PROFILE table of the ATOMIC schema to the KDD_REVIEW_OWNER table of the ATOMIC schema. If you delete a user through the Security Management System screen, you should come back to the Security Attribute Administration screen and select the value User from the Choose User Type drop-down list. Then the deleted user will be updated in the KDD_REVIEW_OWNER table against the column actv_flg as N, and that user is inactive.Table 3-12 Security Attributes
Fields Description Organization Select an organization from the drop-down list. A User or Organization's access to other Organizations depends on the selection(s) made for this organization parameter, such as, if a user is mapped to Org1 and Org2, it implies that this user can access alerts which belong to these two organizations, provided other security attributes are also matching. Own Alert Flag Select whether this user type will own a alert flag from the drop-down list. The Own Alert flag is required for taking ownership of the alerts.
Business Organization The default Business Organization is displayed, but you can select the business organization from the drop-down list. Jurisdictions Select the jurisdictions from the drop-down list. Mapping of one or more jurisdictions to a user or organization allows this user or organization to access alerts, watch lists, and watch list members that belong to the mapped jurisdiction. The selected jurisdictions are displayed in Jurisdictions section after you save your selection. Business Domain Select the business domains from the drop-down list. Mapping of one or more business domains to a user or organization allows this user or organization to access alerts, watch lists, and watch list members that belong to the mapped business domains. The selected jurisdictions are displayed in Jurisdictions section after you save your selection. Scenario Group Select the scenario group from the drop-down list. Mapping of one or more Scenario Groups to a user or organization allows this user or organization to access alerts that belong to the mapped scenario Group. The selected jurisdictions are displayed in Jurisdictions section after you save your selection. - Click Save. The following confirmation message displays: Would you like to save this action?
- Click OK. The following confirmation message displays: The update operation successful.
- Click OK. The updated Security Attribute page is displayed.