Role-Based Permissions

Is anyone doing anything regarding streamlining user permission management? Over time, the "copy user" method seems to get messy as people move around the company, roles evolve, etc.

I was thinking of creating template users for each role in the company (i.e. _Sales, _ProcEng, _ProdMgr, etc.), then when a new person starts I can simply create them as a copy of the template. If someone changes positions, I simply resync them to the proper template. I also considered writing a .NET application to assist with this (along with regularly resync users to their roles). We comply to FDA requirements, and it is very important that this is tightly controlled. I would prefer to manage roles, NOT users.

Any thoughts or ideas would be greatly appreciated - thanks in advance.

Find more posts tagged with

Comments

Legacy Contributor

That's exactly what we do. We have role based permissions set up (SALES, ENGINEERING, PURCHASING, etc.). We also have NO PERMISSIONS set up which is what each new user is set to until we know where they need to go.

0712131256598360.doc

Legacy Contributor

Great idea. I just started at a new company and I constantly ask, "who's profile should she copy". Your idea makes things a lot cleaner.

How are you controlling access to these "template" accounts? ie, just password, disabling the user account etc.

Legacy Contributor

Jason, just read the 2nd part of your comment. How are you defaulting your new users to no permissions?

Legacy Contributor

I created the complex passwords for our template accounts, so that should prevent unauthorized use. I also am using # for the first character of them to keep them grouped together and easily recognized as a template account.

Legacy Contributor

@Matthew - We have a No Permissions User set up that we copy to when a role isn't defined. Then just add what they need.

Copyright © 2025 Infor. All rights reserved.