search

SOP: Role Policy Assignment

hashtag
Summary

Whenever a role needs to be granted (or denied) permission to perform an action, access data, or use fields the policy decision point will use the policies assigned to the active roles to determine appropriate action.

hashtag
Use Procedure When

hashtag
Procedure

hashtag
Before Beginning

hashtag
Procedures / Tasks

  1. Access the SanteDB Administrative Portal byLogging In

  2. Access the Security Administration menu item

  3. Access the Group List

  4. Locate the group to which the policies are being assigned/removed and click Edit

  5. Locate the policy (documented in Assigning Policies) and press the Add button

  6. Search for the assigned policy

  7. Select the appropriate enforcement permission:

    1. Grant - Members of the group should be allowed to access data tagged with the policy or perform actions demanding the policy

    2. Deny - Members of the group should not be allowed to access data tagged with the policy or perform actions demanding the policy

    3. Elevate - Members of the group may access data or perform actions tagged with the policy, however only after re-authenticating themselves.

hashtag
After Completion

hashtag
Summary Information

Current Status: Example Reviewed By: SanteSuite Team

hashtag
Revision History

Author
Date
Changes

Justin Fyfe (SanteSuite)

2022-03-15

Initial Version

hashtag
See Also

Security Architecturechevron-rightPrivacy Architecturechevron-rightManaging Policieschevron-rightManaging Groupschevron-right

PreviousRole Management SOPsNextSOP: Assigning Users to Roles

Last updated

Was this helpful?