Permission and Restriction to Entities
Portfolio Data Center provides a feature wherein users belonging to specific business groups only can access the entities. The purpose is to restrict the access to an entity within other areas of the product suite. This is an optional workflow feature that clients can use to tighten entity level security, if needed. In standard entity creation workflow, access to new entities are available to all business groups, not just the business group of the user who created it.
Only members of Super User Group & System Admin user group have access to the Permissions tab automatically when creating and editing the entity details. Users in other business groups does not have access to Permissions tab.
Configure Permission and Restriction to Entities
Portfolio Data Center allows you to configure restriction to entities in two ways: 1. Using the Permission tab of Entities workflow. 2. Using the entities option in Business Groups.
Setup Restriction in Permissions tab of Entities
In PDC, while creating/editing the entity you can assign permission to entity to restrict its access.
To restrict permission and access to entities:
From the left navigation, select Portfolio Desk > All. Or select Portfolio Desk and click the appropriate entity type.
By default, you see the Entity Summary workspace.On the Home tab, in the Manage group, click Create New.
You see the Create New dialog box.ÂIn the Select Policy list, select a policy based on the entity type you want to create and click OK.
You see the Details page displaying the selected policy's field groups.Provide the appropriate entity details and click Next.
Note:Â Based on the policy configuration, the system enables the Benchmark, Peer Groups, Disclosures, Asset Mix Policy and Fee Schedule pages.
You see the Assignment tabs, if any configured for the policy.Provide the Assignment details, as required and click Next.
You see the Permission tab displaying the list of business groups which have access to all the entities.Click the Business Groups list to select the user groups who can access the entity.
You see the available list of Business Groups. By default, business groups which have permission to access all entities are shown selected.Â
Note: During the business group creation, if the option "Access to All Entities" is enabled, then those business groups have access to all the entities.Select one or more business groups to assign permission to use the entity, as needed.
You see the selected groups are added to the grid.Click Save to save the entity.
The system allows only those users who belong to the assigned business groups to access the entity across the Eagle suite.
Setup Restriction via Business Groups
In User Administration of Eagle suite, while creating/editing the Business Groups, you can assign permission to entities to restrict its access.
To restrict permission and access to entities:
In User Administration, from the left navigation, select Business Groups.
You see a list of all the available business groups.On the Home tab, in the Manage group, click Create New.
You see the Add New Group page.Enter the name and description of the new business group.
Select the type of business group. Options include: Regular; Compound.
Select the Access to All Entities check box to grant users in the new business group access to all entities in the system.Â
If Access to All Entities option is unchecked (default), users will have access only to the entities created by this business group or to entities for which they have been explicitly granted access.Select Validate Entities and/or Client check box to grant access to selected entities in the system. By default, this option is selected.Â
Select the Entities tab and click Add to add the required entities to the new business group.
Click the Clients, Sources, Custom Archive Rules, Classifications, Codes, or Users tabs and click Add to add the appropriate information.
After you have selected the appropriate options from all the tabs, click Save Changes on the ribbon to save the business group.Â
The system creates the business group and lists it in the Business group list.