0
21.0.2
Zurich, Yokohama Patch 6
New framework to set up configurations to restrict access on entities and related downstream objects.
For example, restrict access to Risks and Controls of specific Locations or Entities to certain User groups or Users.
A framework that can support the access setup for security configurations based on Entities.
For example, this can be used to restrict access to Risks and Controls of specific Locations or Entities to certain User groups or Users.
- New
- Continuous maintenance of access restrictions on entity's related record types.
- Introduced "Entity based data access rules" configuration.
- Support for enabling Entity-based access on custom tables.
- Provided entity-based access admin to perform CRUD operations on "Applicable record type" table.
- Continuous maintenance of access restrictions on entity's related record types.
- Changed
- Entity access update utility experience from record page to guided assistance.
- Apply entity-based access (EBA) restrictions at the record level by using guided assistance in the bulk access update utility. Guided assistance consists of a four-step process:
- Define the scope for the relevant entities, entity types, or entity classes.
- Scope the related record types
- Apply the conditions to each record type to refine the scope
- Review the selected records before you execute and initiate the update
- Apply entity-based access (EBA) restrictions at the record level by using guided assistance in the bulk access update utility. Guided assistance consists of a four-step process:
- Entity access update utility experience from record page to guided assistance.
- Fixed
- Entity-based access configuration deactivation behaviour
- Deactivate entity-based access configuration, enabling the system to automatically assess the records that it impacts. If only the configuration is restricting a record, the access restrictions are removed. If other configurations also apply to the record, the restrictions remain in place and only the selected configuration is deactivated.
- Entity-based access configuration deactivation behaviour
The following GRC application must be installed and active:
- GRC: Profiles (com.sn_grc)
- GRC: Common Workspace Elements (com.sn_grc_workspace)