SOP: Role Policy Assignment

Summary

Whenever a role needs to be granted (or denied) permission to perform an action, access data, or use fields the policy decision point will use the policies assigned to the active roles to determine appropriate action.

Use Procedure When

Procedure

Before Beginning

Procedures / Tasks

  1. Access the SanteDB Administrative Portal byLogging In

  2. Access the Security Administration menu item

  3. Access the Group List

  4. Locate the group to which the policies are being assigned/removed and click Edit

  5. Locate the policy (documented in Assigning Policies) and press the Add button

  6. Search for the assigned policy

  7. Select the appropriate enforcement permission:

    1. Grant - Members of the group should be allowed to access data tagged with the policy or perform actions demanding the policy

    2. Deny - Members of the group should not be allowed to access data tagged with the policy or perform actions demanding the policy

    3. Elevate - Members of the group may access data or perform actions tagged with the policy, however only after re-authenticating themselves.

After Completion

Summary Information

Current Status: Example Reviewed By: SanteSuite Team

Revision History

AuthorDateChanges

Justin Fyfe (SanteSuite)

2022-03-15

Initial Version

See Also

pageSecurity ArchitecturepagePrivacy ArchitecturepageManaging PoliciespageManaging Groups

PreviousRole Management SOPsNextSOP: Assigning Users to Roles

Last updated