Record Level Security

In record level security you control a security role's access to specific Info Center records.

Record level security is implemented via the Vision lookups. After you specify the role's access to records, the lookup results list displays only those records to which the role has access rights. The users that are assigned to that role can only navigate to the Vision records to which they are granted access. You can also control whether a role is able to update a record or just view the record's contents.

For example, if you set the Read Level for the Opportunities Info Center WHERE Project Manager (the role) EQUALS John Jones AND state EQUALS Kansas, then the project manager named John Jones has read level access to the Opportunity Info Center records for the state of Kansas.

In addition to granting or restricting access to individual records, Record Level Security also supports granting or restricting access to hierarchical record structures. One possible hierarchical structure is the Project (Level 1), Phase (Level 2), and Task (Level 3) structure related to the work breakdown structure. For example, if a role has access rights to a Project, then that role will also have access to all Phases and Tasks within that Project. However, if a role only has access to a specific Phase within a Project, the role can only access Tasks within that particular Phase; the role cannot access other Phases or Tasks within the same Project or in other Projects.