13.8. Using Domain Restrictions

Domain Restrictions (also referred to as data-sensitive security) are mainly used to control values users enter into the system. Some of the restrictions ensure that certain criteria are met before letting users execute business functions.

Domain restrictions are, like use cases, added to user roles.

To add a domain restriction to a user role:

1. Double-click the Security icon on the SICS desktop.
2. Select the User Role tab in the Access Security Manager window.
3. Double-click one role to open the View User Role window for the selected role.
4. Click the Domain Restrictions tab.

5. Select New from the pop-up menu.

A wizard appears and lets you choose between the available domain restrictions.

Each restriction has a name and assigned access types. The access types describe what action (update, edit, read, create, or delete) is restricted. (These values are for information only, you cannot change them individually.)

6. Select an entry on the list, and click Next.

The window you see depends upon the Domain Restriction you selected. Click Finish when you have selected the required options.