SmartPlant Master Tag Registry security uses the SmartPlant Foundation security model to control access to and operation of project data. SmartPlant Master Tag Registry administrators must configure and manage security through user roles and access groups in SmartPlant Foundation Desktop Client.
The security model is a flexible mechanism to control role-based user access to data and the operations that can be performed on that data.
The security model is comprised of:
-
Users
-
Roles, domains, and access groups
-
Configurations
-
Role assignments and owning groups
-
Security rules (are used in the Web Client)
A user is assigned a role in a configuration
Roles are related to access groups, which control access to methods (commands), relationships, and security rules. Any number of methods or relationships can be grouped together on an access group. A role can provide functionality through any number of access groups, and the same user can play different roles depending on the configuration.
Users and objects, like documents, can both be related to specific security codes to limit access, and security rules can be used to further restrict access and are related through the access group. For more information about these security components, see Components of the security model.
The security model controls user access to:
-
Application modules
-
Menus and toolbars
-
Shortcut menu commands
-
Relationship manipulation and navigation
The Desktop Client is used to configure the security model by creating and relating security objects. No additional schema modeling of classes, interfaces, or relationship definitions is required.
Once the security access model is designed, the various levels of access are modeled by creating access groups and relating them to roles. The access groups are related to the relevant methods, interfaces, and view definitions to which they grant access.
The product is delivered with several default roles and access groups, which are loaded with the default SmartPlant Master Tag Registry administrative files. For information about SmartPlant Master Tag Registry default roles and access groups, see Manage Access Groups and Roles.
To configure SmartPlant Master Tag Registry security, you must create users, configure roles of users, then assign or relate the new user to access groups using the SmartPlant Foundation Desktop Client.
The SmartPlant Foundation How to Configure the Security Model guide describes the configuration and components of the SmartPlant Foundation Security Model.