Alchemy® Role Based Access Control (RBAC) allows you to implement access control policies and ensure documents maintained in Alchemy databases are tamper-proof. RBAC increases the security and protection capabilities of Alchemy beyond current password protection, for even tighter control of access to any stored documents. RBAC allows you to set up functions for Alchemy client programs that are linked to employee authorization. For example, an employee in an Accounts Payable department needs to find and read contracts and purchase orders but should not be able to print, email, extract, copy or annotate the documents.
RBAC allows you to set user specific access to over 140 unique end user functions in Alchemy. You select specific functions available to each user, blocking any remaining functionality to stop unauthorized access or use of corporate information from the Alchemy Server MMC console, which further supports and reinforces the rules and guidelines for your organization’s specific access to information at a user level. RBAC is designed to easily manage a group of users with common job functions rather than user-by-user. You can make a single change to the functionality list authorized for a group and it will automatically apply to every user in that group. RBAC easily scales in large or complex organizations. For example, in many companies the more senior an employee, the greater the access they are given. RBAC supports the automatic transfer of functionality access from subordinate employees to more senior employ-ees, which you can then change on a case-by-case basis.
Defining Role level functionality of Databases
The Role Settings Functional Control List (FCL) controls how members of a security role access and use all Alchemy databases mapped to that security role. For example, if the Role Settings FCL is edited to allow only opening of databases and retrieving files into databases, then members of that security role will only be able to open databases and retrieve files into databases mapped to that security role.
Note: For Alchemy Web installations, if Alchemy Integrated Security is enabled, you can control the Alchemy Web File Add feature for the databases assigned to the security role through the Role Settings FCL by selecting the Product-specific settings node in the Role Settings FCL displayed in the details pane. Additionally, you can control the File Add feature for individual databases in the security role through the Database Settings FCL for the specific database. In order to activate the Alchemy Web File Add feature you must also activate the Can write node under the General client settings node in the respective settings FCL displayed in the details pane. If Alchemy Web is not licensed, the Product-specific settings node does not appear in either the Role Settings FCL or the Database Settings FCL. The Role Settings Functional Control List (FCL) also controls access to and functionality of Alchemy databases located on the licensing server machine that are not under Alchemy Server control.
Role Settings
The Role Settings FCL must be modified (edited) in order to limit or change what functionality is available for databases mapped to the security role.
1. In the Alchemy Server console tree, expand Alchemy Server | <the node for your server’s name> | Security | Roles | <the target security role node>.
2. Under the security role node, click the Role Settings node. The Role Settings FCL appears in the Details pane. Note: Selecting the Role Settings node displays the Role Settings FCL in read-only mode (the details pane background is gray). If this is the first time you have selected the Role Settings FCL, or if during a previous editing session you reset the Role Settings FCL, the listed FCL options appear in gray lettering.
Edit Role Settings
Right-click the Role Settings node.
Click Edit on the shortcut menu. The Role Settings FCL appears in write (edit) mode achat cialis 20.Note: The first time you enter edit mode for the Role Settings FCL, all functional options are cleared.
Editable Role Settings
Select the functions and features you want to assign to databases mapped to the security role.
Note: In order to activate build and other database write features, including the Alchemy Web Add documents feature and Library Services functions, you must select the Can write check box, which is located under the General client settings node at the top of the Role Settings FCL. In addition to selecting individual FCL options, you can also apply global Role FCL settings by clickng:
Defaults Clicking this button applies the original default settings to the Role Settings FCL, i.e., all options are selected. To apply default settings to the FCL, click Defaults and then click OK. When prompted, click Yes to confirm your selection. When you click OK, however, to exit editing mode, the FCL returns to read-only mode in an edited state (the FCL options appear in black let-tering).
Cancel Clicking this button cancels the current FCL editing operation and returns to FCL read-only mode in the state it was in before the current editing operation.
Reset Clicking this button returns the FCL to the default, unedited state (FCL options are listed in gray lettering). To return the FCL to its unedited default state, click Reset. When prompted, click Yes to confirm your selection.
Click OK when finished to save your settings
Recent Comments