Set Use Permissions for Policies

Policies are pre-set definitions that determine the level of access a user has to the Admin menu and certain Administrative functions. When assigned to a Role, the Policies determine which specific Admin menu items that users assigned to that Role have access to, and also whether they have access to the selected Design functions when they log in.

If a policy is granted for a particular branch of the Admin menu, then all operations below that branch are available, unless another policy explicitly revokes permissions to a menu item further down the branch.

You can only grant (or revoke) permissions if your Role can access the Policies branch of the menu.

You can only grant (or revoke) permissions to Roles at a lower level, or "rank", than your highest role. Rank refers to the level of administrative abilities of a Role (rather than a hierarchical level) - the higher the rank, the more administrative ability the Role has. The ranking of roles in SAI360 is:

System Administrator
Site Administrator
All other roles.

For example if you are a member of the Application Administrator role, then you can grant or revoke policy use permissions for all Roles except System Administrator and Application Administrator. You cannot modify your own Role's policy use permissions - only higher roles can do this, so, in this example, only the System Administrator Role can grant or revoke permissions to the Application Administrator Role.

To set permissions for Admin menu items

In the web application, select Designer Security Permissions Policies from the menu. A list of all security Policies is displayed.
Double-click on the Policy you want to assign to a Role, or remove from a Role.
The Policy Admin form is displayed.

See the table below for a list of all policies and their related Admin menu items.
Click Add New Roles. This opens the Policy Permission data entry page.
Select one or more Roles from the selection list.
Members of the Roles you select here will be able to see the Admin or Design menu, and the menu items relevant to the Policy selected in Step 2.
Click OK to close the selection list.
Click Save.
Restart the web server to apply the changes.

Policies and their related Admin menu items

Policy	Admin Menu Item
Advanced Filtering - Build	Allows users to build their own User Filters. Rather than using this policy you should use the 'Build User Filters' role.
Clean Component	Gives user access to clear data from components. See: Designer Configuration Management Clean Component
Edit List View	Allows users to build customized List Views. Rather than using this policy you should use the 'List View Edit' role. See: User List Views
Filtering and View - Admin	Allows a user to administer User Filters and User List Views. This will give the user access to menu items: Admin User Defined Filters/Views User Defined Filters Admin User Defined Filters/Views User Defined Views.
Maintain All Localities	Allows a user to create and maintain All Localities. Gives user access to menu item: Admin Localities All Localities.
Maintain Analytics	Allows a user to create or edit Analytics Rules. Gives user access to menu item: Designer Analytics Rules Builder Designer Analytics Java Docs
Maintain API Keys	Allows a user to create API Keys. After upgrade, this policy will be attached to the system role "Policy Role - Maintain API key". Gives user access to menu item: Designer Security API Key
Maintain Audit Log Admin	Allows a user to control the Audit Log settings. Gives the user access to menu item: Admin Audit Log ...
Maintain Component Filters	Allows a user to create and maintain Component Filters. Gives the user access to menu item: Designer Filters Component Filters.
Maintain Component Use Permissions	Allows a user to set Security Component Use Permissions. Gives the user access to menu item: Designer Security Component
Maintain Components	Allows users to Access the Designer Tools, allowing them to maintain fields and relationships for components. Gives the user access to menu item: Designer Component Management. Note: Contact SAI360 if new components are required. Additional licence fees may apply.
Maintain Constants	Allows users to create and maintain user defined Constants. Gives the user access to menu item: Designer Constants ...
Maintain Dashboards	Allows the creation and maintenance of Dashboards. Gives the user access to menu item: Designer Dashboards Dashboard Designer
Maintain Default Locality	Gives the user the ability to Apply Default Locality for the entire system. Gives the user access to menu item: Admin Localities Default Locality
Maintain Events/Imports/System Settings/Rollups	Gives the user access to maintain event types eg. Emissions, Sustainability emails, events. Menu item: Designer Events Gives the user access to maintain imports. Menu items: Designer Imports Data Import Admin Imports Import Status Dashboard Admin Imports Import Trigger Gives the user access to create Reminder List Groups. Menu item: Designer Forms and Views Reminder List Groups Gives the user access to rebuild rollup tables. Menu item: Admin Tools Rebuild Rollup Tables
Maintain External API Tokens	Allows a user to create External API Tokens for use in Data Imports and Rest Callout form actions Gives the user access to menu item: Designer Security External API Tokens
Maintain Forms	Allows a user to design and maintain Forms, as well as List Views from within the Web Application. Gives the user access to menu item: Designer Forms and Views. Note: in addition to this Policy, you must assign the Role "Policy Role - Configuration Elements" to grant access to the Design Tools, since the policy only gives access to the menu item.
Maintain Global Settings	Allows a user to maintain the Global Settings for the system. Gives the user access to menu item: Admin Global Settings
Maintain Internationalization	Gives the user access to the Languages menu: Designer Languages Export Localisation, Designer Languages Import Localisation Designer Languages Maintain Languages
Maintain Lookup Filters	Allows the user to add or modify Lookup Filters. Gives the user access to menu item: Designer Filters Lookup Filters
Maintain Lookups	Allows user to add and modify Lookups, and items within the lookups. Gives the user access to menu item: Designer Field Types Lookup
Maintain Matrices	Allows user to add and modify Matrices. Gives the user access to menu item: Designer Field Types Matrix
Maintain Policies Use Permissions	Gives the user power to administer Security Policies Use Permissions. Gives the user access to menu item: Designer Security Permissions Policies
Maintain Profiles	Grants access to create and maintain Profiles. Gives the user access to menu item: Admin Profiles
Maintain Security Roles	Grants access to maintain Security Roles. Gives the user access to menu item: Admin Security Security Roles
Maintain Terms of Use	Grants access to maintain the Terms of Use Gives the user access to menu item: Admin Terms of Use Terms of Use Admin
Maintain Users	Grants access to maintain Security Users. Gives the user access to menu item: Admin Security Security Users.
Maintain Views	Allows a user to apply component filters to Views. Gives the user access to menu item: Designer Forms and Views Views.
Monitoring	Grants access to all Monitoring activities. Gives the user access to menu item: Admin Monitoring ...
Questionnaire Administration	Allows a user to import and maintain Questionnaire Templates in the Web Application. Gives the user access to menu item: Admin Questionnaires Questionnaire Templates.
View Audit Log Entries	Allows a user to View Audit Log Entries. Gives the user access to menu item: Admin Audit Log Log Entries
Visualization Administration	Enables the user access the Visualization Admin area Gives the user access to menu item: Admin Visualization Visualizations Admin
Walkthrough Administration	Allows a user to create and maintain Walkthrough Templates in the Web Application. Gives the user access to menu item: Admin Walkthrough Walkthrough Templates.
Web Application Publish	Enables the user to perform a Publish. Gives the user access to menu item: Designer System Publish