Creating Security Profiles

Security profiles define project access based on classes and metric values associated with a project and a user. Associating a metric with a security profile further refines the access based on the values assigned to the metrics. The available metrics are those associated with models in the selected classes, so the metrics in a profile can distinguish access only within the selected classes.

Note:  Prior to creating a security profile, ensure that the classes and metrics exist within Accolade.

To create a security profile:

1. From the System menu, select Security & Groups > Security Profiles.

To narrow the list, search by the category.

2. Do one of the following:

• To add a new security profile - Click Add New in the top right corner of the page.
• To edit an existing security profile - Click the name of the security profile to open it for editing.

3. Enter the following information to identify the security profile:
   
   Required fields display with red text and an asterisk * if the field is empty.

Field	Description
Name	Enter a name, up to 64 characters long, which identifies the security profile.
System Name	Enter a unique, shorter name that identifies the security profile in queries, reporting views, field codes, and other places in Accolade. The name must be unique among security profiles, and can only contain letters (English alphabet), numbers, and the underscore.
Description	Enter a description of the purpose or nature of the security profile. This description helps other users identify the profile throughout the system.
Category	Enter or select the group to which this security profile belongs. More... Use categories to organize like profiles together. Leave this field blank to add to the Default category. To define a new category, select New Category and enter the category name. To delete a category, remove every item from the category. Empty categories are deleted automatically.
Order	Enter a number to specify the security profile's place in the list of profiles on the Security Profiles page. A smaller number places the profile higher in the list.
Visible	Select this check box when this security profile is ready for use.
Classes	Select which classes to include in this security profile. Note:  A security profile must have at least one class.

4. In the Metrics section, click Add Metrics and select one or more metrics to add from the Available Metrics list. Use the Category, Name or System Name options to filter the list of available metrics. Click Select to select the metrics, and then click Done when finished.

A metric must be a List, Multi-Select List, or String type and be associated with at least one model in a class selected in the profile to add it to a security profile. Additionally, security lists cannot include initialized or calculated metrics.

5. For each profile metric, click the Value column to specify the values.

• For List type metrics - Select the values the metric must have to allow access to the project.
• For String type metrics - Enter the exact string of characters that this metric must have to allow access to the project.

6. (Optional) To allow access to projects whose assigned process model does not include this metric, select the Extended Access check box. Extended access allows access to projects that do not contain the metric itself, not to projects that contain a different value for the metric.
7. Click Create to create the new security profile or Apply to save changes to an existing security profile.

Notes:    To delete a security profile, ensure the profile is not in use, select the profile, and click Delete. Select to print the list of security profiles.