Access control for documents and notes
In addition to the standard document and note-related system permissions, you can control access to documents and notes by configuring access permissions. To do so, a document must have its document security type set. To see documents of a particular type, you must have both permission to view documents in general and permissions to access to the document security type. A document access profile grants this access. Access control for notes is the same as for documents.
Note and document access control requires:
- Document
Security Types or Note Security Types – Security types determine document
and note access control. Typical security types for documents are Unrestricted
and Confidential.
The supported types are defined in the
DocumentSecurityTypetypelist. They appear in the Security Type drop-down list of the and New Document screens. A document can be assigned a maximum of one security type. Security types for notes are defined in a similar manner by theNoteSecurityTypetypelist. - System Permissions – Users must be assigned roles containing permissions to access documents and notes in general. The roles must also have permissions which match those in the access profile of the security type. Different permissions affect notes and documents.
- Document and Note Access Profiles – Using the previous two concepts, these profiles relate permissions and security types to restrict access to a subtype of documents.
In the illustration that follows, the policy quote document has Security Type set to Internal only. Tamara Allen is an audit examiner. Because she has the Audit Examiner role, she has the necessary permissions to view and edit Internal only documents. Therefore, she can edit and view the policy quote document.
Dennis Right is an underwriter assistant. His permissions only allow him to view Internal only documents.
