Users, Groups and Permissions

• Users, Groups and Permissions
• • Users/Groups
  • Permissions
  • AD Groups
  • AD Debugger

This section describes the administration functions used for managing users, groups and permissions. This sub-set of administration functions are generally used by Datamine consultants.

Users/Groups

The Users / Groups module controls the role membership for Production Accounting users and the creation of local Production Accounting users. Datamine recommends that you retain the Default Administrator account.

When using Production Accounting with Active Directory (AD) Groups, existing AD users are given access to Production Accounting via the relevant AD Groups; manual set up of a user account via the Users / Groups screen is not required.

Permissions

Permissions can be configured here to manage each user's or user group's ability to view, edit or delete information in the Production Accounting application. Datamine administers permissions as required.

When using Production Accounting with Active Directory Groups, permissions are applied to AD Groups and a user's permissions are controlled via the AD Groups to which they belong.

Note: Datamine uses an external tool (called the Permissions Editor) to assist in the management of permissions. Any manual changes made in the Permissions module must be communicated to Datamine. Otherwise, the manual permission changes are lost when Datamine redeploys permissions using the Permissions Editor.

AD Groups

The AD Groups functionality is for system administrators only. It is used to select the Active Directory Groups available to Production Accounting.

Note: Once an Active Directory Group has been added, permissions must be configured for the group to enable users to access and use the Production Accounting application.

AD Debugger

The AD Debugger functionality is for system administrators only. It is used to help identify access issues for Active Directory users.