The charts in the following tables summarize which users can perform a function, given a certain authorization on an Activity Record. Each column heading represents a field in an Activity Record. To see the results of setting the Group Administrators? flag to Y, look in the Group Admin. column. You can see that system administrators and group administrators in the owner's group can perform the activity, and no one else. If more than one flag in the Activity Record is set to Y, any category with a Y in either column can perform the function.
The owner of a Move Request is the user who added the Move Request. During user ID maintenance, the owner is the user ID being accessed.
The owner of an Inventory Record is determined as follows:
The tables on the following pages summarize which users can perform an activity, given a certain authorization on an Activity Record.
Each vertical column represents a field on the Activity Record. For example, the Share group column on the first chart indicates which users can perform an activity on Move Requests, Inventory Records, or user IDs in which the users sharing a group? field is Y and the rest of the fields are N.
The table shows that system administrators, the owner, and any users who share a group with the owner can perform this activity, and users who do not share a group with the owner cannot. (In the left-hand column, Operations is a user ID with the Operations attribute who does not belong to any groups. It is possible for a user ID with the Operations attribute to also fall into another category, such as sharing a group with the owner.)
Note: If a specific user ID is listed on an Activity Record, that user can always perform that activity. If a group is listed, any user in that group can always perform that activity. No checking of groups or ownership is done in these instances.
The following table describes authorization for activities pertaining to Inventory Records, Move Requests, and user ID maintenance.
|
Designator |
|
Group |
|
Share |
|
|
System Administrator |
Y |
Y |
Y |
Y |
Y |
|
Operations |
Y |
N |
N |
N |
Y |
|
Group Admin. (G.A.) |
N |
Y |
N |
Y |
Y |
|
G.A. – other |
N |
N |
N |
Y |
Y |
|
G.A. – other |
N |
N |
N |
N |
Y |
|
Share a group |
N |
N |
N |
Y |
Y |
|
Owner |
N |
N |
Y |
N |
Y |
|
Ordinary user |
N |
N |
N |
N |
Y |
Key to table:
A specially designated CA‑PanAPT user who can always use any CA‑PanAPT activity. There can be more than one CA‑PanAPT system administrator.
A user ID who does not belong to any group. A user ID with the Operations attribute might also belong to other categories.
A user ID who shares a group with the owner and is an administrator in that group.
A user ID who shares a group with the owner and is an administrator in a different group.
A user ID who is an administrator in a group but does not share any groups with the owner.
A user who shares a group with the owner of the Move Request or Inventory Record.
The user who adds a Move Request is the owner of that Move Request. That user is then given authority to perform functions allowed to Move Request owners against his/her own Move Requests.
No shared group
The following table describes authorization for all other activities. The concept of owner, and therefore, sharing a group with the owner has no meaning for these activities.
|
Designator |
|
Group Admin |
|
Share Group |
|
|
System Administrator |
Y |
Y |
Y |
Y |
Y |
|
Operations |
Y |
N |
N |
N |
Y |
|
Group Admin – any group |
N |
Y |
N |
N |
Y |
|
Share a group |
N/A |
N/A |
N/A |
N/A |
N/A |
|
Owner |
N/A |
N/A |
N/A |
N/A |
N/A |
|
Ordinary user – no shared group |
N |
N |
N |
N |
Y |
|
Copyright © 2004 CA.
All rights reserved.
|
|