Editing Permissions (by role)

With the exception of the Admin role, Site Administrators can add, edit, or delete both QSM default and user defined roles. Note also that the permissions associated with these default roles can be overridden at the individual project level.

To browse or edit the list of permissions assigned to each Role, use the Permissions link on the Roles page or the Permissions by Role menu item. A matrix of Permissions by Role will appear. The roles currently defined for your enterprise appear in the first column of the matrix.

 

 

 

In general, changing the permissions associated with an existing role immediately applies those changes to all users currently assigned to that role. The exception to this general rule occurs when a user has multiple roles. This can occur when access to one or more projects has been granted at a different level than the one specified by the user’s default role at the OBS or individual project level in SLIM-Collaborate. For example, the project access settings for Project X may grant access to that project to all users assigned to a given OBS Node. In this case, each user assigned to the OBS node will have permissions to that project commensurate with those outlined in the role specified for each user in their OBS assignment. Via the User Access List on the Access tab of any project or template in SLIM-Collaborate, users with Full Access or Manage Projects permissions or Primary Responsibility for a project may also grant access to persons not assigned to the project’s designated OBS node. This field can be used to override the user’s default role and associated set of permissions and assign different access permissions that apply only to that project.

In this case, access to that project is determined by the project level settings defined in the User Access List, rather than the user’s default role. Consequently, changes to the default role will not affect the user’s access to that project but will affect his or her access to any projects that granted access via the user’s default role.

Access permissions can be granted or withheld by service (Estimation, Closeout) and by function (Manage Site, Manage Projects, Back Office).