How to Implement Security Details
In order to restrict access to certain records from unauthorized users, you’ll need to complete three main steps:
2. Assign security levels to individual users or to security groups.
3. Assign security levels to records.
Step 1: Create a Security Detail
- On the Details page (Admin > Configure > Details), create a new detail for an incident, problem, project or CSI and select one or more entities where it will be active. The new security detail must be one of two field types:
- Select List, Administrative Controlled
- Select List, Administrative Controlled, Multiple
- In the Detail Field dialog, enable the Security Detail option.
- On the Lists page (Admin > Configure > Lists), find the detail you just created and do the following:
- Add options (issues) as needed to define the security levels for your organization (see Managing Lists).
- If desired, specify a default option that will be selected automatically in new records.
The security detail will now appear in the following places:
- In the Security Details section of the Users and Security Groups pages. Each security detail will contain a prefix that indicates which record type it applies to (e.g., Incident - [Detail Name]).
- In new and existing records (for incidents, problems, projects or CSIs, depending on which record type you created it for).
Step 2: Assign Security Levels
You can assign one or more security levels to individual users or to all members of a security group.
- Open the Users page (Admin > Configure > Security > Users) or the Security Groups page (Admin > Configure > Security > Security Groups).
- If necessary, specify an entity, and then select a user or security group.
- Select at least one level from each detail that applies to this user or group.
- Click Save.
Step 3: Implement Security Levels in Records
Once you complete these steps, users can specify who is eligible to view a record by selecting a security level from the detail that appears in that record.
See “