An overview of the Module Entitlements that can be granted to Roles in Risk Cloud
Module Entitlements provide access to capabilities in a specific Application or in the Risk Cloud environment.
The screenshot below shows all of the different Module Entitlements available:
To add a Module Entitlement to a Role, check the relevant entitlement and then click the book icon or the pencil icon for read-only and edit access respectively.
Types of Module Entitlements
There are three types of Module Entitlements: Admin Entitlements, Application Entitlements, and Report Entitlements. Below is a description of each Module Entitlement and the access it provides:
All - This Entitlement grants access to all sections in the Admin Module, as well as to all Application and Report Entitlements. Admin Roles with this Entitlement can create and manage user accounts (by navigating to Admin > Users using the navigation bar), and update their account theme and view account statistics (by navigating to Admin > Account). The image below shows the Admin Module.
All Fields - Roles granted this Entitlement will see the option to "View All Field Data" when they click on the gear icon of Records they have access to. By clicking View All Field Data, the user will be able to see all Fields from the Workflow in which the Record resides listed in alphabetical order by Field Name. Even Fields that are not visible in the Step will be displayed. Roles with edit access will be able to edit any Field from that Workflow, even if the Field is marked "Read-Only" in that Step. Roles with read-only access will be able to view all Fields, but will not be able to edit them.
API Access* - Allows access to the "Services" section in the Admin Module. Roles with this Entitlement can manage external services that have been integrated via Risk Cloud's API.
*API access must be included in your contract before this Entitlement can be used.
Assign - Allows users to change the assignee for Records that they have access to (i.e., reassign work to both internal and external users). If a Record is reassigned to an external user, a corresponding "Assign" Job is necessary to notify the external user that they were assigned a Record. If this Job is not in place, the external user will have no way of knowing a Record has been assigned to them. The Assign Entitlement also grants access to the Bulk Assign function in the Work Module. Note: Users do not need this Entitlement in order to assign work via the "Submit" Modal within a Workflow. The screenshot below shows how a user with the Assign Entitlement can reassign Records.
Build - Allows users to access the Build Module and all sections within it. Roles with edit access to the Build Module Entitlement are able to create and edit Roles and Groups (by navigating to Build > Access), Layouts, Jobs, and Applications. Note: Any Role with edit access to the Build Module Entitlement will be able to edit any item within the Build sections, even if they haven't been granted access to the Application in the Steps portion of the Role.
Delete Records - Allows users to delete individual Records from within a Form. For more information on deleting a Record refer to Delete a Record.
Note: The Delete entitlement will allow users to delete any Record they can access. For example, User A is in a Role with the Delete Entitlement and that Role only has access to Application A. User A also has access to Application B via a Permission Set. User A will be able to delete Records in both Application A and B.
Import - Allows users to access the "Import" function in the Work Module.
All of the Report Entitlements provide access to certain sections within the Reports Module.
Records - Allows users to access and view the Records Report in the "Table Reports" section of the Reports Module. Roles with this Module Entitlement are able to export Records Report Layouts to CSV or Excel.
Dashboards - Allows users to access Dashboard Reports in the "Dashboards" section. This Module allows access to the Visual Reports that can be used within Dashboards (available in the "Visual Reports" section). Roles can be granted Edit or Read-Only access to Dashboards. Those with edit access can both build their own Visual Reports and Dashboards and edit any existing Dashboards. Edit access to Dashboards also grants the user edit access to Table Reports. Those with read-only access will only be able to view Dashboards that others have already created.
Productivity - Allows users to access and view, but not edit, the system-generated Productivity Report in the "Visual Reports" section.
Status - Allows users to access and view, but not edit, the system-generated Status Report in the "Visual Reports" section.
Table Reports - Allows users to access Table Reports in the "Table Reports" section of the Reports Module. Roles with this Module Entitlement are able to export Table Reports to CSV or Excel. If the user has read-only access to the Table Report Entitlement but has edit access to the Dashboard Entitlement they will be able to edit all Table Reports because the Dashboard Entitlement overrides the Table Report Entitlement.
For more information on creating Roles in Risk Cloud, refer to our Creating Roles.