Managing application access
Archived
1 Task
5 mins
Beginner
Pega Platform 8.6
Security
English
Scenario
GoGoRoad product managers want to restrict access to development on the New Vendor case type so that only approved roles perform updates. Configure permissions on the New Vendor case type to prevent anyone with the User role from performing any actions on the case type.
The following table provides the credentials you need to complete the challenge.
Role | User name | Password |
---|---|---|
Developer | author@gogoroad | pega123! |
Customer Service Representative | CSR@gogoroad | pega123! |
Territory Manager | territorymgr@gogoroad | pega123! |
Note: Your practice environment may support the completion of multiple challenges. As a result, the configuration shown in the challenge walkthrough may not match your environment exactly.
Challenge Walkthrough
Detailed Tasks
1 Set permissions for the User role on the Access Manager
- Log in with the developer credentials provided in the scenario.
- In the header of Dev Studio, click Configure > Org & Security > Access Manager > Work & Process to view role-based authorizations for each case type in your application.
- In the Access Group drop-down, select GoGoRoad:Users to view authorizations for the User role.
- Under Case Types, expand New Vendor to display the child rows.
- To the right of Open, in the GoGoRoad:User column, click the Full Access check mark to update the access when opening instances of the New Vendor case type.
- Select No Access, and then click OK to set the authorization.
- For the following rows, repeat steps 5 and 6 to set each child row to No Access authorization.
Case type Application work type Role based authorization New vendor Run Reports No Access New vendor Modify No Access New vendor View History No Access
Note: Changes in the Access Manager are saved automatically. You can click the Refresh Page icon under Access Group to verify that changes saved.
Confirm your work
- In the lower left, click the profile icon, and then click Log off to log out of Pega Platform™. The login screen is displayed.
- Log in with the customer service representative (CSR) credentials provided in the scenario. The CSR user portal is displayed.
- Click Create > New vendor.
- Verify that the create view displays an error message indicating that you are not authorized to create, modify, or lock New Vendor case instances.
- In the lower left, click the
- Log in with the territory manager credentials provided in the scenario. The territory manager portal is displayed.
- Click Create > New vendor.
- Verify the create view displays a new instance of the New Vendor case type.
Note: Other roles, like manager, are not restricted from creating a New Vendor case and providing vendor information.