SOP: Creating New Roles
This procedure should be used when a new classification of user within the SanteDB system (an access role) is desired. Access roles are used to control which system functions and data access is granted or denied to a user.
- A new user classification is required
- An existing group does not (or can not) fulfill the same purpose
- When further, restrictive control is required for individual user accounts
- Approvals to create a new role gathered
- Role has been documented and initial members list established
- Your user account has the Create Roles policy granted
- Necessary, context specific approvals and conventions
- Include things like signatures required
- Or whether the incident needs to be documented
- Your IT department should have common security practices in place
- 1.
- 2.
- 3.
- 4.
- 1.The name of the group should comply to conventions
- 2.The name should be unique within the organization/project
- 5.Assign the appropriate access policies to match documented group function (as documented in Assigning Policies)
- 6.Assign the desired role membership (those for which appropriate documentation has been gathered) . (see: Assigning Users)
- Notify the requestor and group members of their access
- Close work item in ticketing system (or related documentation for completion)
Current Status: Sample
Reviewed By: SanteSuite Team
Author | Date | Changes |
|---|---|---|
Justin Fyfe (SanteSuite) | 2022-03-15 | Initial Version |
| | |
| | |
Last modified 8mo ago