Security roles

The security roles that have been defined in the environment are described in the following table.

Security roles
Role	Description
Administrator	This role has the following privileges and responsibilities: Modifies the configuration Adds users to security roles Modifies lookup lists and tables Can enable superuser mode Has access to the Pending and Archive branches Cleans and fixes data entry mistakes in the vault
Archive	The ability to add a document into the Archive branch.
Editor	A drafter in the Projects branch of the vault. These users cannot release documents, but only modify documents in the editable states of workflows.
Manager	This role has the following privileges and responsibilities: Controls the workflow of plant documents Can assign documents to projects Can create new projects Can delete projects Can release documents All other tasks in the Projects branch
Reviewer	Has the ability to approve or reject documents in the Projects branch of the vault. Also has the ability to redline documents.
Viewer	Can see documents that are in the Miscellaneous, As-Built, Renditions, and Objects branches of the vault but cannot see documents in the Projects branch.

Security roles

Role

Description

Administrator

This role has the following privileges and responsibilities:

Modifies the configuration
Adds users to security roles
Modifies lookup lists and tables
Can enable superuser mode
Has access to the Pending and Archive branches
Cleans and fixes data entry mistakes in the vault

Archive

The ability to add a document into the Archive branch.

Editor

A drafter in the Projects branch of the vault. These users cannot release documents, but only modify documents in the editable states of workflows.

Manager

This role has the following privileges and responsibilities:

Controls the workflow of plant documents
Can assign documents to projects
Can create new projects
Can delete projects
Can release documents
All other tasks in the Projects branch

Reviewer

Has the ability to approve or reject documents in the Projects branch of the vault. Also has the ability to redline documents.

Viewer

Can see documents that are in the Miscellaneous, As-Built, Renditions, and Objects branches of the vault but cannot see documents in the Projects branch.

All roles have been assigned to the root folder of the vault. This is essential for the correct functioning of features like scopes, navigation views, and reports.

On the virtual machine, Meridian Enterprise groups are assigned to the roles and Meridian Enterprise user accounts have been created for each role as listed in the following table.

Group memberships
Meridian Group	Members
BC_ADMINISTRATORS	Administrator, Demo
BC_EDITORS	Dick Drafter, Eric Editor
BC_DOCMANAGERS	Mindy Miscellaneous
BC_MANAGERS	Mark Manager
BC_OBJMANAGERS	Otto ObjectManager
BC_REVIEWERS	Patrick ProjectEngineer, Rick Reviewer
BC_VIEWERS	Victor Viewer

Group memberships

Meridian Group

Members

BC_ADMINISTRATORS

Administrator, Demo

BC_EDITORS

Dick Drafter, Eric Editor

BC_DOCMANAGERS

Mindy Miscellaneous

BC_MANAGERS

Mark Manager

BC_OBJMANAGERS

Otto ObjectManager

BC_REVIEWERS

Patrick ProjectEngineer, Rick Reviewer

BC_VIEWERS

Victor Viewer

The Administrator account has been configured as a rescue account as described in the BlueCielo Meridian Enterprise Administrator's Guide.

The passwords for all of these accounts are listed in the following document that resides in the vault:

\Miscellaneous\Implementation\Configuration\Security\password.txt

A complete overview of the role assignments can be generated using the stand-alone tool named RBStool, that is located inside the vault at the folder specified above. A report can be generated using an XSLT style sheet similar to the following figure. An example style sheet is stored in the same folder as the tool, together with a report of the current security settings.

Related Information

Submittal group and Transmittal group

Object group

Superuser mode

Audit trail


	BlueCielo Meridian REFSYS 2012 Overview Guide \| BlueCielo ECM Solutions