Creating a Security Group by Specifying a List of Users

To create a security group:

  1. Log on to PPM.

  2. From the menu bar, select Open > Administration > Open Workbench.

    The PPM Workbench opens.

  3. From the shortcut bar, select Sys Admin > Security Groups.

    The Security Group Workbench opens.

  4. Click New Security Group.

    The Security Group window opens.

  5. In the Name field, type a name for the group.

  6. In the Reference Code field, accept or type a new value.                 

    The Reference Code field value is used to uniquely identify the security group across all the languages being used in you PPM implementation.

    The reference code value must be unique across all languages, use capital letters and ASCII characters, not start with an underscore (_), and not use any of the following special characters:

    ~!@#$%^&*()+}{":?><`-=]['''';/.,',

    System data reference codes start with an underscore (_) and should not be modified.

  7. In the Description field, you can type text that describes the group and its purpose.

  8. To enable this security group, next to Enabled, select Yes.

    Only the names of enabled security groups are available when generating or updating users or workflows.

  9. For This Security Group will be used by, select the checkboxes for the PPM entities that you want to be able to use the security group.

    The following table lists the available checkboxes.

    Field Name

    Description

    Requests

    Determines whether this security group can be used in request processing. If this checkbox is not selected, the security group is not displayed in:

    • Assigned Group field on the request

    • User Access tab in the Request Type window—this restricts users in the security group from selecting a request type when creating a request.

    Note: If a user has the System: Override Key Fields Segmentation access grant, then the security group is displayed in the Assigned Group field.

    Projects

    Determines whether this security group participates in project management activities.

    Packages

    Determines whether this security group can be used in package processing. If the checkbox is cleared, the security group is not displayed in the Assigned Group field in the Package window.

    Note: If a user has the System: Override Key Fields Segmentation access grant, then the security group is displayed in the Assigned Group field.

    Timesheets

    Selecting this checkbox enables the Charge Code Rules tab. You can use this tab to specify who has access to certain charge codes in Time Management.

  10. To link selected users to the security group:

    1. On the Users tab, click New.

      The Users window opens.

    2. In the Users field, select one or more users.

    3. Click OK.

  11. Link the access grants, as follows:

    Note: Each access grant enables certain functions performed on a screen. For a description of each access grant, see Access Grants.

    1. In the Available Access Grants list, select one or more access grants.

    2. Click the right-pointing arrow.

    3. Click OK.

  12. Restrict the security group from using certain workflows when processing packages, as follows:

    1. Click the Deployment Management Workflows tab.

    2. Select the workflows in the Allowed Deployment Management Workflows list.

    3. Click the left-pointing arrow.

      The Restricted Deployment Management Workflows lists the selected workflows.

    4. To exclude all future workflows, select the Always restrict new Workflows checkbox.

  13. Restrict the security group from using certain application codes when creating a package line.

    This restricts the applications through which each user can process objects.

    1. Click the Deployment Management App Codes tab.

    2. Select the app codes in the Allowed Deployment Management App Codes list.

    3. Click the left-pointing arrow.

      The selected items move to the Restricted Deployment Management App Codes list.

    4. To exclude all future app codes, select the Always restrict new App Codes checkbox.

  14. Click the Ownership tab, and then select the ownership groups that you want to be able to edit, copy, or delete the current security group.

    For more information about how to set ownership for a security group, see Configuration Security.

  15. On the User Data tab, provide any necessary information.

  16. To save your changes, do one of the following:

    • To register the current security group and close the Security Group window, click OK.

    • To save the information and leave the Security Group window open, click Save.