Skip to main content

Managing application access

1 Task

5 mins

Visible to: All users
Beginner Pega Platform 8.7 Security English
Verify the version tags to ensure you are consuming the intended content or, complete the latest version.

Scenario

GoGoRoad product managers want to restrict access to development on the New Vendor case type so that only approved roles perform updates. Configure permissions on the New Vendor case type to prevent anyone with the User role from performing any actions on the case type.

The following table provides the credentials you need to complete the challenge.

Role User name Password
Developer author@gogoroad pega123!
Customer Service Representative CSR@gogoroad pega123!
Territory Manager territorymgr@gogoroad pega123!
Note: Your practice environment may support the completion of multiple challenges. As a result, the configuration shown in the challenge walkthrough may not match your environment exactly.

You must initiate your own Pega instance to complete this Challenge.

Initialization may take up to 5 minutes so please be patient.

Challenge Walkthrough

Detailed Tasks

1 Set permissions for the User role on the Access Manager

  1. Log in with the developer credentials provided in the scenario.
  2. In the header of Dev Studio, click Configure > Org & Security > Access Manager > Work & Process to view role-based authorizations for each case type in your application.
    dev-studio-configure-menu
  3. In the Access Group drop-down, select GoGoRoad:Users to view authorizations for the User role.
  4. Under Case Types, expand New Vendor to display the child rows.
    access-manager-work-process-new-vendor
  5. To the right of Open, in the GoGoRoad:User column, click the Full Access check mark to update the access when opening instances of the New Vendor case type.
  6. Select No Access, and then click OK to set the authorization.
    Access Manager New Vendor Open instances No Access
  7. For the following rows, repeat steps 5 and 6 to set each child row to No Access authorization.
    Case type Application work type Role based authorization
    New vendor Run Reports No Access
    New vendor Modify No Access
    New vendor View History No Access

     

    Access Manager New Vendor case type No Access
Note: Changes in the Access Manager are saved automatically. You can click the Refresh Page icon under Access Group to verify that changes saved.

Confirm your work

  1. In the lower left, click the profile icon, and then click Log off to log out of Pega Platform™. The login screen is displayed.
    Dev Studio log off
  2. Log in with the customer service representative (CSR) credentials provided in the scenario. The CSR user portal is displayed.
  3. Click Create > New vendor
  4. Verify that the create view displays an error message indicating that you are not authorized to create, modify, or lock New Vendor case instances.
    not-authorized-to-create-lock-new-vendor-case-type
  5. In the lower left, click the profile icon > Log off  to log out of Pega Platform.
    CSR-logoff
  6. Log in with the territory manager credentials provided in the scenario. The territory manager portal is displayed.
  7. Click Create > New vendor.
  8. Verify the create view displays a new instance of the New Vendor case type.
    new-vendor-create-view
    Note: Other roles, like manager, are not restricted from creating a New Vendor case and providing vendor information.

This Challenge is to practice what you learned in the following Module:


Available in the following mission:

If you are having problems with your training, please review the Pega Academy Support FAQs.

Did you find this content helpful?

100% found this content useful

Want to help us improve this content?

We'd prefer it if you saw us at our best.

Pega Academy has detected you are using a browser which may prevent you from experiencing the site as intended. To improve your experience, please update your browser.

Close Deprecation Notice