The advice notes on this page cover:
- Configuring the security
- Answer common questions
- Requirements
If you cannot find information related to you specific problem here, please contact support using the Contact Us page.
Please Note:
Initial security settings for the software are covered in the Getting Started Guide
Security
Advice and guidance on security and configuration
CRS Risk - Risk Assessment Toolkit uses 2 modes of security. Default security is to allow all users full access to the data and the profile, with no restrictions (except Administrator password requirements for administrative tasks.)
The more advanced mode requires activation from the configuration settings.
To do this follow the instructions below:
- Close the profile
- Log on as Administrator (SYS)
- Click Maintenance on the menu, followed by Configuration.
- A multi tab dialog box appears
- On the Other Settings tab, ensure the check box Enable Security is checked
- Click Save Settings to persist the changes to the database
- Close and Reopen CRS Risk - Risk Assessment Toolkit
When you reopen CRS Risk, the profile will appear. Ensure you are logged on as the Administrator (SYS), and a new option will be available on the context (right-click) menu in the profile.
Please Note: You must have at least 1 defined employee record created to be able to assign security permissions
On the Departments and Operations level you can configure security for each user. By default, all users have READ-ONLY access to the items in the profile with no assessment or approval privileges. Security is broken down into 7 categories.
- Hide - This level is hidden from the user in the profile AND reports
- Mod - User can modify items within this level of the profile
- Add - User can add items within this level of the profile
- Del - User can delete items within this level of the profile
- Ass - User can assess hazards within this level of the profile
- App - User can approve assessments within this level of the profile
- Rev - User can review assessments within this level of the profile
As stated, for EACH of the items in the security check list, it only applies to the items within that level of the corporate profile and below. Security is inherited from the parent level, therefore you do NOT need to set the security at the levels below UNLESS you need to set individual permissions for a specific item in the profile. For example, if you hide a department from a user, then ALL operations etc, will be hidden below it. This is useful for departmental management. If you set the remaining departments as hidden, the user can only maintain the department to which they have permissions. This also applies to reporting and enquiries.
The Administrator (SYS) account has FULL access to ALL areas of the profile (do not routinely log on as administrator in multi-user environments).
Further information is included in the online help files included with the software.