Security rights control access to CSM functionality and data. For example, to create a Dashboard, you must have security rights to access the Dashboard Manager (functionality). To view, add, edit, or delete the Description Field in an Incident record, you must have security rights to access the Incident Business Object and the Description field (data).
For a detailed explanation of each Security right, see Security Rights Reference.
Security rights are set at the Security Group level in CSM Administrator using the Rights and Business Object tabs (Security>Edit security groups>[Security Group]>[Tab]):
- Rights tab: Use this tab to configure access to functionality; specifically View, Add, Edit, Delete, Allow, Run, and Open rights.
- Business Objects tab: Use this tab to configure access to Business Object/Field data; specifically View, Add, Edit, Delete, Limit, Edit in final state, and Change final state. Business Objects rights can be set for different types of Business Object Owners (example: Record Owner, Manager of Owner).
Each Security Group has a defined set of security rights (access to functionality and data). Each User/Customer is assigned to one and only one Security Group. The User/Customer then inherits the security rights of that Security Group.