In the Security Groups application,
you combine the independent
security groups or the security groups that are not independent to
generate a security profile.
When you combine security
groups, the following rules apply to
storeroom authorization:
- A user must have access to both a
storeroom and the site for the
storeroom before the storeroom authorization is added
to the security profile for the user.
- The storeroom authorizations
that are specified for an independent
security group apply exclusively to the sites associated with that
security group.
- In the Security Groups application, you can
authorize a security
group to make transactions with storerooms. The storeroom authorizations
specified for all dependent security groups apply to all sites that
are specified for all dependent security groups.
- If you do
not authorize a security group access to all storerooms
or access to individual storerooms at a site, a user who is a member
of that security group does have access to storerooms at that site.
- If any of the security groups to which a user belongs grants access
to all or specific storerooms at a given site, then the security profile
for the user reflects the maximum amount of storeroom access.
- You can give a user access to the Users application and Security
Groups application, but not grant that user access to any storeroom
records. In this scenario, the user can use these applications to
authorize access to all storerooms, but cannot add specific storerooms
records.
The security profile of a user lists the
authorized storerooms.