1. Security Guide
  2. Duties and Privileges
  3. Duties Provided at Initial Setup

Duties Provided at Initial Setup

As part of this default security configuration, the system privileges have been logically grouped into duties and the duties have been assigned to an initial set of job roles. The provided duties can be modified or deleted and new duties created. Administrator users can change the mappings of roles, duties and privileges in Sales Audit's User Interface.

Details about how to manage these application security policies are available in Chapter 2, Manage Security Policies in the Oracle Retail Merchandising Administration Guide.

Duty Types

Duties provided in the default security configuration follow a general naming convention to indicate the type of privileges grouped within and the level of access provided. In Merchandising, the provided duties are one of the following duty types:

  • Inquiry

    An inquiry duty will provide the user the ability to search for and view the associated entity. The provided inquiry duties are used when it is desirable for a user to have visibility to an area, but no option to create or update any information. Inquiry duties are assigned to viewers of an area.

  • Management

    A management duty provides the user the ability to maintain the associated entity. The provided management duties are used when it is desirable for a user to have the ability create, update, delete or in other words maintain information in Sales Audit. Management duties may contain either the inquiry duty or the review duty for the same entity. For example, the Transaction Management Duty contains the Transaction Inquiry Duty along with the additional Maintain Transaction Privilege and Delete Transaction Privilege, because in order for users to maintain an entity, they must also have the ability to search for and view the entity. The Error Override Management Duty contains the Edit Override Error Privilege along with Error Override Review Duty. Management duties are assigned to contributors of an area.

  • Review

    A review duty is meant for users with the authority to either review, or review and approve submissions. For example, the Total Definition Review duty and Audit Rule Review duty contains the access to approve or disable a Total and a Rule respectively. Also, other Review duties such as Error Override Review duty contains the access to only view the Error List on the screens. Review duties are assigned to reviewers of an area.

Duties with no Hierarchical Relationships

There are some duties used within Sales Audit that do not have a hierarchical set of duties with increasing levels of access, as described by the duty types above. These duties simply grant access to a single area or task. Therefore access is either granted or not, there are no access levels. These duties may be classified as management or inquiry duties, depending on if the user can maintain the related data or if it's view only. For example:

  • Settings Menu Duty

    Grants access to the Settings menu except for the Security folder. The default security configuration has this duty assigned to the Application Administrator role. This is a limited use duty which cannot be assigned to any other roles aside from the provided application administrator role.

  • Administrator Console Duty

    Grants access to the Settings menu, including the Security folder where security roles, duties and privileges are managed. The default security configuration has this duty assigned to the Application Administrator role. This is a limited use duty which cannot be assigned to any other roles aside from the provided application administrator role.

  • Application Global Menu Duties

    These duties grant access to links in the Application Navigator which allow users to launch into another application in the Merchandising suite. In order to see the links they must also be defined via the Application Navigator screen in the ORAAC Tasks list.

Limited Use Duties

There are limited use duties which provide access, but only to the application administrator role provided in the default security configuration. These duties cannot be mapped to any other roles.

  • Settings Menu Duty

    Grants access to the Settings menu except for the Security folder. The default security configuration has this duty assigned to the Application Administrator role.

  • Administrator Console Duty

    Grants access to the Security folder on the Settings menu where security roles, duties and privileges are managed. The default security configuration has this duty assigned to the Application Administrator role.

Determining Access for your Organization

When determining access for a given role in your organization, start by categorizing each role with a duty type for each functional area in the application. For example, a Sales Audit Analyst may be a viewer and a contributor store days, transactions, totals and rules. They may have no access to system options, maintaining employees and bank store relationships.