Business case: Allow NTC advisors to see all overrides entered in SFASRPO, but can only add/delete/update override records with the ‘PRE-REQ’ Permit Type.
Identify or define a new domain - GTVFDMN
Filter GTVFDMN to determine if your domain exists. Domains should be named based on the affected table and should follow the following naming convention:
SB_SFRSRPO_VBS
S: Student
B: Banner
SFRSRPO: affected table
VBS: indicates that we are using value-based security on this domain.
Note the existing domain. To create a new domain:
Click Insert. Using the naming convention, define a new name and give it a description. Save.
Connect the domain to the driver table - GORFDMN
If you created a new domain, connect it to its driver table in GORFDMN.
Click Insert. Select or enter the domain. Enter or select the driver table. Select or enter VBS. Save.
Create the table rules
containerscontainer - GORFDPL
In this step we’re creating the container to which we will later add a rule in the form of a SQL statement.
Click Insert. Select/enter the domain and table. Check the Active Indicator box. Save.
If you had to create a new domain in the first step OR you created a rule container for an existing domain with a new associated table: have a DBA run gfvbsaddpol.sql to create Oracle policies for all tables defined for the domain before moving to the next step.
If you used an existing domain + table combination, move to the new next step after you’ve created the container. In this circumstance, running the script isn’t needed.
Create/identify the group - GTVFGAC
A group is made up of one or more rules. In this step, we’re creating/identifying the group code we’ll later link the rules to.
Determine if a group exists to which you are adding this rule. If not, create a new group by clicking Insert. Enter the Code and Description. Save.
Groups should be named oriented with their function.
Create/identify the business profile code - GTVFBPR
In this step we’re creating or identifying the code representing the group of individuals this rule applies to.
Select an existing business profile or create a new one by clicking Insert. Enter the code and Description. Save.
Business profiles are groups of individuals; these individuals are being grouped based on their need to do the task the rules allow them to do.
Create rules for the group - GOAFGAC
Enter or select the Group. Go.
Enter the appropriate SQL code in the Predicate field. Click the Validate SQL button (optional but recommended). Save.
Access to predicate
If you don’t know the affected field in the table, click the Column button. Selecting the Column Name will populate it in the Predicate field.
In the Access to Predicate tab, select the business profile, or group of users, the rule applies to. Check the functions you DO NOT want them to do.
You could also or instead identify users for access to predicate settings. This could be helpful when testing: enter a user who may not be assigned to the business profile and use the same checkbox pattern as for the profile.
Save.
Add users to the business profile - GOAFBPR
If the users this rule applies to has previously been established, you can skip this step.
Select/enter the Business Profile. Go.
Enter the User IDs for all users should should be in this business profile. Save.
On this page
| Table of Contents | ||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|
|