Granting screen-level permissions to user groups

Grant screen-level permissions for data manipulation. Screen authorization for user groups is critical to database security and data integrity.

Note: Because even the system administrator can be locked out of Infor EAM, it is important to allow at least one other person, in addition to the system administrator, permission to the Users form.

To grant screen-level permissions to user groups:

  1. Open the User Groups form.
  2. Select the user group for which to grant screen-level permissions, and then click the Screen Permissions tab.
  3. Click the plus sign (+) beside the menu and/or submenu you wish to view. The system expands the menu and/or submenu and displays the folders and screens that reside at various levels below the main menu and/or submenu structure. See Setting up menus for user groups for more information about the user group security hierarchy.
    Note: Click the minus sign (-) to collapse the menu.
  4. Select the screen to which to apply screen-level permissions. Screen Permissions becomes unprotected.
    Note: If a screen has tabs in addition to a List View page and Record View page, select the tab to which you want to apply screen-level permissions.

    Tab Available and Tab Always Displayed become unprotected if the tab is available at the screen level.

    If you select a screen or tab that has system-defined security, certain fields will remain protected. For example, the Issue/Return Parts screen does not allow deletes. The system protects Delete.

  5. Select one or more of the following attribute options to determine the level of permissions authorized for the user group:
    • Query—Select to allow users to retrieve data from the database.
    • Insert—Select to allow users to insert new data into the database.
    • Update—Select to allow users to update data previously retrieved from existing records in the database. Users must have query permission to update database information.
      Note: If the user group has Insert or Update permissions to a screen, the user group must also have Query permissions to that screen.
    • Delete—Select to allow users to delete data from the database. Users must have query permission to delete data from the database.
    • Tab Available—Select to make a tab available to the user group.
    • Tab Always Displayed—Select to display the tab to the user group at all times.
    • Security Filter—Enter the necessary Dataspy to prevent the user group from accessing specific records. See Creating security filters.
    Note:  When you unselect Query, the system automatically unselects Update and Delete.

    When you select Tab Always Displayed, the system automatically selects Tab Available.

  6. Click Submit.