Roles in the application dictate exactly what access each individual user has to a given screen. Ensure roles are properly assigned ensure security within your application. Roles are often only accessible by administrative users and should be reviewed regularly.
Roles have two key components to consider
- Assigning a screen to a role: This determines, in a generic way, what can be accessed by users that are granted that role.
- Assigning a role to a user: Once the screens have been assigned to the role, each user may be assigned this role.
It is important to note, that one user can be assigned to more than one role. When this happens, the highest level of security granted to a screen across all the roles assigned will decide what access the user is ultimately provided.