Security Groups


Table of Contents   Previous Page  Next Page    

MemberTies is designed to enable you to secure various actions that a user could perform in the system, such as adding members, viewing reports, or opening credit card data. Security settings are created and applied with Security Groups. You can create any number of security groups, each with different security options enabled and disabled.

By default, every new user is assigned to an unrestricted security group.  If you don't change this setting, the user will have access to everything in the system (other than things restricted to the administrator user, of course).

Security Groups require time to setup correctly, but save you time in the long run.  Since there are almost 200 different security settings available, setting up a new user with security options like another user would be very time-consuming.  With Security Groups, you only need to setup a particular set of rules once, and then you can apply it to any user you wish.  Of course, if you have no need for security, you can just leave users set to "All Access."

Adding Security Groups

1Login to MemberTies as the administrator user, "mtadmin".
2Choose Tools > Database Admin Tools > Maintain Security Groups.

 

3Click Add.

 

5The following options are displayed on the Security Group window:
Group Name - This is the name of the security group that will be displayed in the "Security Group" list when working with a user account.
Description - A general description of the group, what it is for, why it should be used, etc.
Allowed - If this checkbox is selected, the action shown can be performed by the any user in the group. If the user tries to do something they do not have access to do, they will receive an "access denied" error message. (Hint: The right-click menu enables you to quickly select all settings and toggle them on and off. If you're creating a new severely-limited group, it's easiest to select and disable everything first, then enable the things that apply.)
 
Remember - changing a setting here affects everyone who has been assigned this security group!
Application Area - Security settings typically apply to a particular area of the system. It is important to look at the application area for the setting you are changing, to be sure it will behave as expected.  For example, the security setting "User is Allowed to Open the Members Tab" relates to the Members tab on the Group window. It has nothing to do with the Membership window at all.
 
Application Areas include:

         Activities
 Database
 Financials
 Groups
 List Contents
 Members
 Miscellaneous
 Preferences
 Reports
 Security

Security Status - This indicates the status of the security option. It changes from "is" to "is not" as the Allowed checkbox is modified.
Filter to Security Area - This enables you to limit the rules displayed in order to help you find the type of security setting you want to change.  For example, an option is provided to only show "Add" security rules, such as the ability to Add Activities, Add Members, Add Dues, etc.  Other options show only Modify and Delete actions, or all actions pertaining to Membership, or to the opening and access to tab pages and windows.
Print - Prints the current security settings.
6When you are finished, click OK to return to the Maintain Users window.

Changing a Security Group

1Login to MemberTies as the administrator user, "mtadmin".
2Choose Tools > Database Admin Tools > Maintain Security Groups.
3 Select the group you want to change, then click Open.
4Make your changes, the click OK.

Deleting a Security Group

When a group is deleted, all users that had been assigned that group are updated to point to the default "All Access" security group instead. This occurs because every user must have a security group assigned.

1Login to MemberTies as the administrator user, "mtadmin".
2Choose Tools > Database Admin Tools > Maintain Security Groups.
3 Select the group you want to remove, then click Delete.

Usage Notes

Some security rules depend on other rules to be enforceable; for example, consider the following settings:

Members: User is Allowed to Add Dues Data
Members: User is Not Allowed to open the Dues Tab
Activities: User is Allowed to open the Activity Front Desk window

These settings prevent the user from adding dues data on the Member window, because they won't be able to get to the Dues tab in the first place. However, with the professional version, there is a preference that allows dues to be added from the Front Desk window. If this preference is active, then this user would be able to add dues via the Activity Front Desk window even though they can't add them via the Dues tab.