New framework to set up configurations to restrict access on entities and related downstream objects.
For example, restrict access to Risks and Controls of specific Locations or Entities to certain User groups or Users.
A framework that can support the setup access for security configurations based on Entities.
For example, this can be used to restrict access to Risks and Controls of specific Locations or Entities to certain User groups or Users.
New:
Implement data segregation and detailed access management so that users can access only the permitted data through entity-based access.
Administrators can grant access to an entity's related records by adding users or user groups, or by using entity user fields for entity-based access configuration. You can enhance your data security and minimize the risk of unnecessary data exposure while ensuring that only authorized users can access an entity's related records.
Refer KB2069935 to know about the performance impact, when entity-based access is enabled on your data.
The below tables are enabled for Entity Based Access:
- Issue Triage, Metric, Issues, Engagement, Control, Risk, Risk Event, Risk Identification, Risk Assessment, Risk Assessment Project, Risk Event Task, Remediation task, Indicators, Indicator task, Attestation, Control test, Test plans, Observation, Risk response task, Risk event tasks and Action items
The following GRC application must be installed and active:
- GRC: Profiles (com.sn_grc)
- GRC: Common Workspace Elements (com.sn_grc_workspace)