Presentation is loading. Please wait.

Presentation is loading. Please wait.

Terri Shkuda Systems Analyst

Published byDarrell Grant Modified over 6 years ago

Similar presentations

Presentation on theme: "Terri Shkuda Systems Analyst"— Presentation transcript:

1 Terri Shkuda Systems Analyst
Migrating from User Rights Matrix to Role-Based Access Control (RBAC) Information and Transition Guide Terri Shkuda Systems Analyst

2 What is Role-Based Access Control (RBAC)
Roles represent a type of user, e.g. Investigator. Roles are defined by a set of permissions. Each user is assigned a role. Users may only perform the actions defined by their role. In REDCap, roles control what a project user can do in REDCap (i.e., Project Design, Data Import, Create Records, Execute Data Quality Rules, etc.) Roles do NOT control what data/forms a project user can see/edit. This is controlled by the Data Entry Rights configured for each project user.

3 User Rights - Current Process
User creates projects and adds users (with or without roles). User has access to User Rights tool. User requests move to Production status and provides a User Rights Matrix (URM). REDCap Administrator uses the URM to create roles and assign users to roles. User does not have access to User Rights Tool. To add, modify, delete users, User provides URM to REDCap Administrator for processing.

4 User Rights – Future Process (as of 11/17/16)
User creates projects and adds users to a role configured in the REDCap system. User requests move to Production status and if not the data owner, provides a completed Delegation form. REDCap Administrator assigns delegation rights to user providing access to the User Rights Tool and User Access Dashboard. User (with delegate rights) can add/delete/modify a user’s rights in the User Rights tool (no need for REDCap Administrator intervention).

5 For Projects currently in Production Transition to New Process
For Production projects, accessing the User Rights tool will not be automatic. For data owners/delegates, please click on the Contact REDCap Administrator button in their project and indicate the following in the subject line of the Transition my delegate access.

6 RBAC Plugin in Control Center
Roles are configured in the Control Center by the REDCap Administrator. Current roles from User Rights Matrix are the same as RBAC roles. Future changes to roles will impact all projects. All rights are configured independent of a project’s feature availability.

7 Migrating Existing User Roles/Rights
Migration is a one-time per project task. The warning box will disappear when all existing users have been migrated Existing user permissions are still in effect until a new role has been selected . The legacy role column is provided to allow for ease of migration. All legacy role names should be available in the new RBAC role list.

8 Converting Legacy Role to RBAC
Once you select “Edit Rights” in the Warning box for a project user, you will be directed to this page to setup the project user’s new RBAC rights along with Data Entry Rights for your instruments. Additionally, you can setup an expiration date, Double Data Entry setting (if enabled)

9 New User Rights Page

10 Add New User This REDCap page now replaces the User Rights Matrix.
All user assignments are done by the project staff with the delegate rights. Project and user-specific rights Form-level rights specific to each user

11 Who gets User Rights access?
Only the Data Owner (e.g., PI) and delegates will have access to User Rights. The REDCap Administrator will check the Delegate box for the user once the delegation form has been submitted. Delegate rights allow the user to assign other users to rights on the project and maintain user access through the User Access Dashboard. Delegates cannot grant delegate rights to other users. The checkbox will be grayed out. All references to delegate rights apply to the data owner as well.

12 User Access Dashboard for Delegates and Data Owners only
Only users with delegate rights will have access to the User Access Dashboard as seen on the My Project page. This Dashboard will allow delegates to manage the users on projects for which they have delegate rights.

13 User Access Dashboard Functions for Delegates and Data Owners only
Delegate or Data Owner Only View by project, by user: API tokens Project expiration date Last time the user accessed the project Delete user from project Expire access from project by user There are also recommendations of changes available (see highlighted areas in red). See example on next slide.

14 Delegate or Data Owner Only

Download ppt "Terri Shkuda Systems Analyst"

Similar presentations

Module 4: System Maintenance Intuit Financial Services University Internet Banking Certification Training.

Module 4: System Maintenance Intuit Financial Services University Internet Banking Certification Training.
Members Only & Login Modules Members Only works with the Login module to provide password protection to Web pages and files. Login Groups may be created.

Members Only & Login Modules Members Only works with the Login module to provide password protection to Web pages and files. Login Groups may be created.
After logging in, select Grading under the Faculty Information heading on the Faculty & Staff Menu.

After logging in, select Grading under the Faculty Information heading on the Faculty & Staff Menu.
Dashboard Company Settings Controlled Online Accounting.

Dashboard Company Settings Controlled Online Accounting.
1 of 2 This document is for informational purposes only. MICROSOFT MAKES NO WARRANTIES, EXPRESS OR IMPLIED, IN THIS DOCUMENT. © 2007 Microsoft Corporation.

1 of 2 This document is for informational purposes only. MICROSOFT MAKES NO WARRANTIES, EXPRESS OR IMPLIED, IN THIS DOCUMENT. © 2007 Microsoft Corporation.
Using Task Manager to Work EDI/ERA Posting Lori Phillips CHUG at Centricity Live April 29 – May 2,2015.

Using Task Manager to Work EDI/ERA Posting Lori Phillips CHUG at Centricity Live April 29 – May 2,2015.
SMART Agency Tipsheet Staff List This document focuses on setting up and maintaining program staff. Total Pages: 14 Staff Profile Staff Address Staff Assignment.

SMART Agency Tipsheet Staff List This document focuses on setting up and maintaining program staff. Total Pages: 14 Staff Profile Staff Address Staff Assignment.
V 03.02.01Slide 1V 1.0Slide 1 FMP/Common Setup FMP – Common Setup Account Clerk School Principal Bookkeeping FMP Common Setup Budgeting Staff Cost Capital.

V Slide 1V 1.0Slide 1 FMP/Common Setup FMP – Common Setup Account Clerk School Principal Bookkeeping FMP Common Setup Budgeting Staff Cost Capital.
AESuniversity Read Only Permissions. Permission Setup What is Read Only Permission? Using Organization consent levels vs. Group consent levels How to.

AESuniversity Read Only Permissions. Permission Setup What is Read Only Permission? Using Organization consent levels vs. Group consent levels How to.
Time Saving Tips & Tricks Enable System Administrator Access to All User Logins In the past, in order for Salesforce.com System Administrators to be able.

Time Saving Tips & Tricks Enable System Administrator Access to All User Logins In the past, in order for Salesforce.com System Administrators to be able.
Entity Administrator Training Working with ADEConnect & Entity Admin Portal ADEConnect.

Entity Administrator Training Working with ADEConnect & Entity Admin Portal ADEConnect.
Entity Administrator Training Working with ADEConnect & Entity Admin Portal ADEConnect.

Entity Administrator Training Working with ADEConnect & Entity Admin Portal ADEConnect.
USER MANUAL USER MANUAL 21 June 2012. TABLE OF CONTENTS System Description4 How It Works?5 PLUGIN Maxxbooking Plugin6-7 Hotel Info & Description8-9 Availability.

USER MANUAL USER MANUAL 21 June TABLE OF CONTENTS System Description4 How It Works?5 PLUGIN Maxxbooking Plugin6-7 Hotel Info & Description8-9 Availability.
Using Linked Submissions in Editorial Manager™ Created by J. Putrino, 3/21/2013.

Using Linked Submissions in Editorial Manager™ Created by J. Putrino, 3/21/2013.
16 th Biennial FTA State Programs Meeting State Public Transit Partnerships Conference Washington, DC Keith Gates NTD Program Manager Office of Budget.

16 th Biennial FTA State Programs Meeting State Public Transit Partnerships Conference Washington, DC Keith Gates NTD Program Manager Office of Budget.
Early Childhood Outcomes Indicator 7 Data Collection Application Review.

Early Childhood Outcomes Indicator 7 Data Collection Application Review.
Processing Exempt Submissions 1-page Reference Guides.

Processing Exempt Submissions 1-page Reference Guides.
Faculty Center for Instructors Roles and Access Faculty Center Features Grade Changes and Approval.

Faculty Center for Instructors Roles and Access Faculty Center Features Grade Changes and Approval.
Page 1 of 42 To the ETS – Create Client Account & Maintenance Online Training Course Individual accounts (called a Client Account) are subsets of the Site.

Page 1 of 42 To the ETS – Create Client Account & Maintenance Online Training Course Individual accounts (called a Client Account) are subsets of the Site.
Gensuite ® Step-by-Step Guide for the setup of Gensuite Compliance Calendar and Training Calendar integration with Microsoft Outlook Some computers experience.

Gensuite ® Step-by-Step Guide for the setup of Gensuite Compliance Calendar and Training Calendar integration with Microsoft Outlook Some computers experience.

Similar presentations

Ads by Google