Roles and rights
Introduction
Note: This content is subject to change with the additional functionality of User Permissions, due to be included within the next few releases.
Apteco software provides two mechanisms for managing access:
-
Licensing: Allows Apteco to manage access based on purchased licences
-
Roles & rights: Allows clients or partners to manage access for their users
Note: Apteco cannot use roles & rights to restrict or manage client/user access, remotely control, or manage any features on behalf of another company.
Through Orbit, Roles & Rights centralise and standardise user and permission (access control) management for Apteco software. At a high-level, Roles & Rights provides two sets of capabilities:
-
Users & groups: Allow the creation, administration, and deletion of users and groups via the Orbit UI. Users can be in more than one group.
-
Permissions: Allow the creation, administration, and deletion of access rights to function(s) within Apteco software for users or groups.
Pre-requisites
The following pre-requisites are needed for roles and rights:
-
New systems installed after Q1 2021 with an Orbit release after February 2022 are able to run roles and rights natively. Default permissions are included in the installation process.
-
Existing systems that plan on only using users and groups functionality do not need to run the migration scripts. Orbit based users and groups operate in conjunction with existing user management in FastStats.
-
Existing systems can either continue to use the current controls, or migrate to the new user permissions, they cannot use both. Existing controls can be migrated to user permissions but user permissions cannot be migrated to the existing controls. The migration process in explained in the User Permissions section.
-
FastStats currently provides various roles, file access rights, and other restrictions to keep system users and groups organised. It is possible to take one of these systems, and migrate it to use user permissions. The migration process assigns permissions to users and groups equivalent to the values that they previously had. These permissions can then be altered as desired once the migration is complete.
Feature switches
Users & groups
Note: Users and groups do not need to be migrated, only the roles and restrictions assigned to them do.
A user with the Orbit administrators role can access users & groups.
Administrators can also disable users and groups for an organisation.
Enabling this allows users and groups to managed from either Orbit or FastStats.