Skip to main content

Managing application access

Archived

2 Tasks

5 mins

Visible to: All users
Beginner Pega Platform 8.5 Security English
This content is now archived and is no longer updated. Progress is not calculated. Pega Cloud instances are disabled, and badges are no longer awarded. Click here to continue your progress in the latest version.

Scenario

GoGoRoad product managers want to restrict access to development on the New Vendor case type so that only approved roles perform updates. Configure permissions on the New Vendor case type to prevent anyone with the User role from performing any actions on the case type.

The following table provides the credentials you need to complete the challenge.

Role User name Password
Developer author@gogoroad pega123!
Customer Service Representative CSR@gogoroad pega123!
Territory Manager territorymgr@gogoroad pega123!
Note: Your practice environment may support the completion of multiple challenges. As a result, the configuration shown in the challenge walkthrough may not match your environment exactly.

Challenge Walkthrough

Detailed Tasks

1 Set permissions for the User role on the Access Manager

  1. Log in with the developer credentials provided in the scenario.
  2. In the header of Dev Studio, click Configure > Org & Security > Access Manager > Work & Process to view role-based authorizations for each case type in your application.
    Dev Studio Configure menu > Org & Security > Access Manager > Work & Process
  3. In the Access Group drop-down, select GoGoRoad:Users to view authorizations for the User role.
  4. Under Case Types, expand New Vendor to display the child rows.
    access-manager-work-process-new-vendor
  5. To the right of Open, in the GoGoRoad:User column, click the Full Access check mark to update the access when opening instances of the New Vendor case type.
  6. Select No Access, and then click OK to set the authorization.
    Access Manager New Vendor Open instances No Access
  7. For the following rows, repeat steps 5 and 6 to set each child row to No Access authorization.
    Case type Application work type Role based authorization
    New vendor Run Reports No Access
    New vendor Modify No Access
    New vendor View History No Access

     

    Access Manager New Vendor case type No Access
Note: Changes in the Access Manager are saved automatically. You can click the Refresh Page icon under Access Group to verify that changes saved.

2 Confirm your work

  1. In the lower left, click the profile icon, and then click Log off to log out of Pega Platform™. The login screen is displayed.
    Dev Studio log off
  2. Log in with the customer service representative (CSR) credentials provided in the scenario. The CSR user portal is displayed.
  3. Click Create > New vendor
  4. Verify that the create view displays an error message indicating that you are not authorized to create, modify, or lock New Vendor case instances.
    not-authorized-to-create-lock-new-vendor-case-type
  5. In the lower left, click the profile icon > Log off  to log out of Pega Platform.
    CSR-logoff
  6. Log in with the territory manager credentials provided in the scenario. The territory manager portal is displayed.
  7. Click Create > New vendor.
  8. Verify the create view displays a new instance of the New Vendor case type.
    new-vendor-create-view
    Note: Other roles, like manager, are not restricted from creating a New Vendor case and providing vendor information.


Available in the following mission:

We'd prefer it if you saw us at our best.

Pega Academy has detected you are using a browser which may prevent you from experiencing the site as intended. To improve your experience, please update your browser.

Close Deprecation Notice