Security Profiles Best Practices

Keep the following set of best practice recommendations in mind when designing security profiles for your organization:

• Use security profiles only when necessary. They can introduce additional risk that unintentionally blocks project information that your users need.
• Carefully analyze the class and metric structure before implementing security profiles. Can you accomplish the same security set up with access groups?
• Metrics used in security profiles must be a List, Multi-Select List, or String type metric. Number, Date, and Long String metric types are not available for use in security profiles.
• Metrics whose value is initialized from another metric, and calculated metrics are not available for use in security profiles.
• Accolade allows the definition of up to 250 profiles. However, keep it simple!