Next we explore high level security measures. There are two possibilites which can be applied; User Security, and Group Security.
User Security - High Level
User Security Levels could be broken down as follows:
- General Staff: (e.g. Reservation Consultants, Accounts Clerks). All General Staff will have a Security Level of 0. Only applications and processes that are set to allow all access - 0 will allow these Users to access them. Any applications or processes that have a security level higher than 0 will not show on these user's menus (in the case of applications) or will be greyed out (in the case of processes).
- Supervisors: (e.g. Reservations Supervisors). All Supervisors will have a security level of 50. Therefore they will be able to access all applications and processes that are set to 0 and also higher - but NO higher than level 50.
- Management: (e.g. Sales Managers, Accounts Managers). All Managers will have a Security Level of 80. They will be able to access the same applications and processes that the General Staff and Supervisors can access - and also ones that have a security level up to 80.
- Maintenance: (e.g. System Administrator, Tourplan Support). These Users will have a security level of 99 which will allow them access to the entire system.
NOTE: a security level of 99 should be restricted to no more than 1 or 2 Users.
Group Securities – High Level
In this example, the Group Security Levels are broken down into smaller groups to suit organisational needs. To the left of the screen you will see there are 6 User Groups that have been defined, the 'Bookings' user group has been expanded to show three consultants attached to the user group. The consultants individual security levels are showing in the brackets next to their name. (Paul has the highest security level as he has a security level that is higher than Lee-Ann and Nicki and will have access to higher level functions within Tourplan.
The System Functions display to the right of the screen and provides a list of applications or functions, the + or - can be used to expand or minimise additional functions within the application list. In this example a user group is selected and is showing in brackets next to the System Function heading.
The FITs list has been expanded to show the System Functions available within the FIT application. Security levels are assigned per function, or at an application level. The above example shows that the Admin, and Code Setup Applications have been locked for a security of 99 or higher, where as the FITs functions have been itemised per function. Functions with a security level of 80 will allow users with a user security level of 80 or more access and allow amendment to bookings for these functions. The 0 setting will allow any users access to these functions.
Accounts Example: All Users that are in the Accounts Department have been added to the 'Accounts Group', and system functions are limited to accounting functions for the accounts group. Anything set to 99 the Accounts group will not be able to access, anything with 80 or below they will be able to access.
NOTE: The above example has the security levels set at the application level, if there was a requirement for accounts users to have different security levels for different accounts functions this could be done by expanding the security function application list as shown in the previous example and setting the security level per function.