Contract Management has five levels of security:
User – security that follows the user independent of the database or project. These options are set in the User Account window in the Contract Management Administration Application.
Module – project and user specific security applied to areas of Contract Management. These options are set in the User Project Access dialog box.
Process – project and user specific security applied to actions a user can perform. These options are set in the User Project Access dialog box.
Reports, forms, and exporting – Reports and forms follow the contact restricted security settings. An Contract Management administrator or project administrator can restrict a user’s access so that the user can only access designated reports and forms.
Database – (Oracle only) database passwords can be changed in the Contract Management Administration Application to prevent users from accessing data.
User-level security follows the user from database to database and is not project specific. Contract Management administrators set users security in the Contract Management Administration Application.
Note:
If a user has no access to a project (except the ability to open the project), Contract Management does not allow them to do anything from within the project.
Contract Management has three user levels: Contract Management administrator, project administrator, and restricted user.
Contract Management administrators have full access to all new and existing projects.
They can change module and process level security for all projects and users.
They can change the project administrator of any project.
They can delete any project.
They can copy project access rights from one project to any other project.
Contract Management administrators can be project administrators.
Project administrators have full access to projects they create or are assigned to.
They can change module and process level security only within projects they create or are assigned to. Project administrators can also change their own access rights.
They can change the project administrator of projects they create.
They can delete only projects they create or are assigned to.
They can copy project access rights from any project only to projects they create or are assigned to.
If the administrator of the project changes, the new project administrator gains full access to the project, and the original administrator becomes a restricted user.
By default, users have no access to projects (this includes all modules and any process level security).
When a new user is added, all permissions in the User List dialog box are cleared (off).
Module level security consists of areas of Contract Management a user can access while in a project. Administrators set these access rights from the User Project Access dialog box.
This affects access to actions, alerts, and all other items that are accessed from the Workspace.
Contract Management administrators or project administrators will assign View, Add, Edit, Export, or Delete rights for each module.
View enables the user to view information only for this module.
Add enables the user to add a new document in this module. You must also have Edit rights to add details to an added document.
Edit enables the user to edit information in this module.
Export enables the user to export from the module. If the user does not have export rights, Contract Management removes all e_* reports from the report list when a user selects a PBL.
Delete enables the user to delete information in this module. You must also have Edit rights to delete details from a document.
Process level security is something that a user can or cannot do while in a project. Examples include approving change orders and certifying requisitions.
In the User Project Access dialog box, the Contract Management administrator or project administrator can mark a checkbox to enable or disable exporting. Also, when an administrator assigns access rights to a module, the rights to view and run reports and forms for that module are also set.
In Oracle, you can use the Configure Groups and Passwords window (accessed from the Contract Management Administration Application) to change the password for your databases. The password is encrypted so that it cannot be deciphered by users.