TracCloud: Staff User Level: Difference between revisions

From Redrock Wiki

No edit summary
No edit summary
Line 5: Line 5:
==User Level in Staff Accounts==
==User Level in Staff Accounts==


Every Staff account in TracCloud is assigned a User Level, <b>SysAdmin</b>, <b>Profile Admin</b>, or <b>Staff</b>. These levels impose restrictions on the selected account that go beyond what you can control with just a permission group.
Every Staff account in TracCloud is assigned a User Level, <b>SysAdmin</b>, <b>Profile Admin</b>, or <b>Staff</b>. These levels impose restrictions on the selected account that go beyond what you can control with just a permission group. This Newsletter goes over the exact differences between these levels.
 
[[File:5574079.png|900px]]
<hr>
<hr>
<b><big>Unique to SysAdmin Accounts</big></b>
<b><big>Unique to SysAdmin Accounts</big></b>
Line 15: Line 17:
* <b>Announcements</b>
* <b>Announcements</b>


* <b>Visits/Appointments Export</b>
* <b>Visits/Appointments SFTP Export</b> & <b>Starfish Export</b>


* <b>Saved Searches</b> - Specifically the menu to manage or delete Saved Searches, other User Levels can still save and access their Saved Searches.
* <b>Saved Searches</b> - Specifically the menu to manage or delete Saved Searches, other User Levels can still save and access their personal Saved Searches.
 
* <b>Audit Logs</b>


* <b>All utilities for merging, deleting, or modifying data in bulk</b> - The ability to merge, delete, or modify individual records is determined by Permission Group.
* <b>All utilities for merging, deleting, or modifying data in bulk</b> - The ability to merge, delete, or modify individual records is determined by Permission Group.


The ability to open groups in a profile (with the ‘Open in no profile’ button)
* <b>Profile-specific Group Entry</b> - SysAdmins can open Permission Groups within a specific Profile, to access only that Profile's Center choices.


The ability to create lists
* <b>The ability to Create Student Lists</b>
The ability to edit locked visits
* <b>The ability to edit locked Visits</b> - In other words, SysAdmins can override the 'Lock visits older than' setting in your Profile.


The ability to manage SAGE referral types
* <b>SAGE referral types</b> - Specifically the ability to modify Referral Types and Emails, other users can still submit Referrals for Students (assuming their Group allows it).
Q2 Tables
Whiteboard Management
Starfish Exports


View Latest Changes
* <b>Q2 Table Management</b> - Settings for Q2 Tables, other users can access the Tables themselves (if their Group allows it).


Log in as utility
* <b>The ability to delete Reasons</b> - Other users can still deactivate or modify Reasons, just not delete.


Batch task entry????
* <b>The ability to edit Favorite Reports of other users</b>


the ability to delete reasons
* <b>Lookup Values</b>


The ability to edit all favorite reports<br><br>
* <b>Audit Logs</b>
 
* <b>Access to TracCloud Changelog</b>


* <b>Lookup Values</b>


And of course some of the more obvious ones...
And of course some of the more obvious ones...
Line 52: Line 50:
* <b>The ability to set other users as SysAdmin</b>
* <b>The ability to set other users as SysAdmin</b>


* <b>'Log In As...[any account in TracCloud]' Utility</b>
<hr>
<b><big>Profile Admin level or higher</big></b>
Profile Admins still have access to many important settings and functions in TracCloud, and will be the ideal level for most of your "admin" accounts. Options like Profile Preferences and Group Management are still available, but potentially dangerous or sensitive utilities are hidden. Here are the options that only Profile Admins and SysAdmins can access.


<b>Profile admins unique and up:</b>
* <b>The entire Profiles menu</b> - Including Centers, Reasons, Prefs, etc.
 
* <b>The entire Groups menu</b>
The ability to create or modify ‘All centers’ or ‘All staff’ reserve blocks
* <b>The ability to create or modify ‘All centers’ or ‘All staff’ schedule reserve blocks</b>
 
The ability to modify a staff member’s user level
* <b>The ability to modify a staff member’s user level</b> - I.e., 'Staff' level accounts can only create other 'Staff' level accounts, Profile Admins can create Profile Admins or Staff.
 
* <b>Work Types Listing</b> - And by extension, the ability to modify Work Types.
 
* <b>The ability to create Student records manually</b><br><br>


Worktypes listing and editing permissions
And a few Reports:


The ability to create student accounts
* <b>The entire Security category</b>


All of profile settings
* <b>The entire Payroll category</b>
All of groups
Security Reports


Payroll Reports
* <b>Students Visits Cleanup Data</b>
Visits Cleanup Data
Visits by Faculty and Subject


Staff can't do any of the above.
* <b>Visits by Faculty and Subject</b>
<hr>
All other permissions for Staff-level accounts are determined by permission group.


|}
|}
[[Category:rsc_internal]]

Revision as of 10:46, 15 April 2022

Template:TracCloudNewsTOC

User Level in Staff Accounts

Every Staff account in TracCloud is assigned a User Level, SysAdmin, Profile Admin, or Staff. These levels impose restrictions on the selected account that go beyond what you can control with just a permission group. This Newsletter goes over the exact differences between these levels.

5574079.png


Unique to SysAdmin Accounts

SysAdmin accounts provide the highest level of access in your Trac System, that includes potentially sensitive data, utilities to modify data in bulk, and the ability to edit technical aspects of your TracCloud instance. Here are the options that only System Administrators can access.

  • Global Preferences - Everything from system theme, to custom fields, to SSO integration settings and more. This entire menu can only be accessed by SysAdmins.
  • Announcements
  • Visits/Appointments SFTP Export & Starfish Export
  • Saved Searches - Specifically the menu to manage or delete Saved Searches, other User Levels can still save and access their personal Saved Searches.
  • All utilities for merging, deleting, or modifying data in bulk - The ability to merge, delete, or modify individual records is determined by Permission Group.
  • Profile-specific Group Entry - SysAdmins can open Permission Groups within a specific Profile, to access only that Profile's Center choices.
  • The ability to Create Student Lists
  • The ability to edit locked Visits - In other words, SysAdmins can override the 'Lock visits older than' setting in your Profile.
  • SAGE referral types - Specifically the ability to modify Referral Types and Emails, other users can still submit Referrals for Students (assuming their Group allows it).
  • Q2 Table Management - Settings for Q2 Tables, other users can access the Tables themselves (if their Group allows it).
  • The ability to delete Reasons - Other users can still deactivate or modify Reasons, just not delete.
  • The ability to edit Favorite Reports of other users
  • Lookup Values
  • Audit Logs
  • Access to TracCloud Changelog


And of course some of the more obvious ones...

  • The ability to edit “Lock to SysAdmin” Course Lists
  • The ability to set other users as SysAdmin
  • 'Log In As...[any account in TracCloud]' Utility



Profile Admin level or higher

Profile Admins still have access to many important settings and functions in TracCloud, and will be the ideal level for most of your "admin" accounts. Options like Profile Preferences and Group Management are still available, but potentially dangerous or sensitive utilities are hidden. Here are the options that only Profile Admins and SysAdmins can access.

  • The entire Profiles menu - Including Centers, Reasons, Prefs, etc.
  • The entire Groups menu
  • The ability to create or modify ‘All centers’ or ‘All staff’ schedule reserve blocks
  • The ability to modify a staff member’s user level - I.e., 'Staff' level accounts can only create other 'Staff' level accounts, Profile Admins can create Profile Admins or Staff.
  • Work Types Listing - And by extension, the ability to modify Work Types.
  • The ability to create Student records manually

And a few Reports:

  • The entire Security category
  • The entire Payroll category
  • Students Visits Cleanup Data
  • Visits by Faculty and Subject

All other permissions for Staff-level accounts are determined by permission group.