Previous Topic

Book Contents

Book Index

Next Topic
Permission Sets

This tab contains predefined permission sets intended mainly for the Business Process Manager authorization. Each set is a set of permissions defined for the particular operation or role (as the names suggest).

The following permission sets (intended for the stated role) are available:

  • Bpm Process Engineer

    The role is assigned to the reference process engineer user "-REF-BPMENG" together with the role "-Bpm.Process Manager Deployer". This is the role for the programmer (executable Process Model) of Processes (usually designed by Process Analyst).

  • Bpm Process Manager - Deployer

    The role is assigned to the reference process engineer user "-REF-BPMENG" together with the role "-Bpm.Process Engineer". In addition to the role "-Bpm.Process Engineer", it enables to open the catalog "Processes for Deployment".

  • Bpm Process Participant - Initiator

    The role is assigned to the reference user "-REF-BPMPAI" who can start a process from the Rich or Web client GUI. The user with this role can start any process he is able to see in the catalog "Processes with Manual Start" (which are in state "In Test" or "Active"). Note: The possiblity to start in NOT derived from Performer of Lane.

  • Bpm Process Participant - Performer

    The role is assigned to the reference user "-REF-BPMPAE" who performs single activities in a process. He is able to claim a task (= to allocate a work item) to himself.

  • Bpm Process Dispatcher

    The role is assigned to the reference user "-REF-BPMDIS" who can:

    • Allocate or offer Tasks to different users.
    • Create Tasks in advance (before they are created automatically by the ProcessInterpreter).
    • Delete Tasks if it has not got the Activity Instance yet.
  • Bpm Engine.ProcessInterpreter

    This role is assigned to the user "PROCESSINTERPRETER" used to run the Process Interpreter application. This application, as a core funcionality, needs no extra authorization.

  • Bpm Engine.TaskExecutor

    This role is assigned to the user group "TASKEXECUTORS", which contains users "TASKEXECUTOR01" and "TASKEXECUTOR02", used to run Task Executor apps. This application performs scripts, service tasks containg business functionality, i.e. authorization must allow to do anything which can be found in scripts.

Note: The permission sets are hardcoded and cannot be changed by a user.

To add a permission set to the List of available authorizations, proceed as follows:

  1. Select the desired permission set.
  2. Click the 'Add' button.

    Help Image

  3. Check the result: The set should be added to the List.

 

Please see also the Business Process Manager chapter for the complex view.

See Also

Authorization Manager Tabs

List

Permission to Object Types

Permission to Technical Types

General