| English |
|---|
| German |
|---|
| Deck |
|---|
|
| Card |
|---|
|
| id | german |
|---|
label | DeutschGlobal permissions and permissions on entity groups can be created in the portal. Permissions for entity groups restrict access to data that refers to the entity group. If, for example, a permission for the role "InsuranceUsers", the permission object "Filing" with the operation "Read" for the entity group "Insurance" is created, the users in this role only see the filings that were submitted by the reporters of this entity group. The filings cannot be edited by the "InsuranceUsers" because they only have the read permission. Under "Master Data → Permissions", permissions on entity groups can be managed. However, only those permissions are available for selection that are not "Global only" ( see table ):
Image Added
Global permissions allow unrestricted access, so these should be granted with caution (e.g. to administrators or power users). These can be selected under "Master Data → User and Roles". If, for example, a global permission for the role "Users" and the permission object "Filing" is created with the operation "Read", all messages can be viewed by the users in this role, but not edited. The chapter Editing roles tells how global permissions can be assigned to a role
Image Added
The following operations can be selected when creating a permission:
- None (the role does not have access to this resource)
- Read (the role has read-only access to this resource, cannot edit, create or delete instance documents)
- Write (the role has write access to this resource, can create new instance documents and edit existing ones, but cannot delete instance documents)
- Admin (the role has full access to the resource, can create, change and delete new instance documents)
The following permission objects exist in the system:
| Permission name | Possible operations | Global only |
|---|
| Administration | Read | Write | Admin | yes |
| AnaCredit Converter | None | Read | Write | Admin | yes |
| Banz Converter | None | Read | Write | Admin | yes |
| Bundesbank Converter Tool | None | Read | Write | Admin | yes |
| CbC Reporting Tool | None | Read | Write | Admin | yes |
| CreateFiling | Read | Write | yes |
| Data Export | Read | Write | Admin | yes |
| Data Source Query Management | Read | Write | Admin | yes |
| Delete Filing | None | Read | Write | Admin | no |
| Filing | Read | Write (submitted filings cannot be deleted) | no |
| Filing Forwarding | Read | Write (filings cannot be deleted) | no |
| History | Read (history cannot be changed or deleted) | yes |
| InDesign Converter | None | Read | Write | Admin | yes |
| Jobs Dashboard | None | Read | Write | Admin | yes |
| Key Performance Indicators | Read | Write | Admin | yes |
| Key Performance Indicators Results | Read (reports cannot be changed or deleted) | no |
| KpiQueries | Read | Write | Admin | no |
| Masterdata | Read | Write | Admin | yes |
| MiFID II Converter | None | Read | Write | Admin | yes |
| Open Filings | Read (open filings cannot be changed or deleted) | no |
| Processing Tasks | Read (processes cannot be changed or deleted) | yes |
| Rejected Filings | Read (rejected filings cannot be changed or deleted) | no |
| Reporting Currency Converter | Read | yes |
| Reporting Requirements | Read | Write | Admin | yes |
| Reports | Read (reports cannot be changed or deleted) | yes |
| Set Filing Status | Read | Write | yes |
| Taxonomies | Read | Write | Admin | yes |
| Tools | Read (tools cannot be changed or deleted) | yes |
| Validation Rule Report | Read | Write | Admin | yes |
| German |
|---|
Im Portal können globale Berechtigungen und Berechtigungen auf Entity-Gruppen angelegt werden. Berechtigungen auf Entity-Gruppen schränken den Zugriff auf die Daten ein, die sich auf die Entity-Gruppe beziehen. Wenn z.B. eine Berechtigung für die Rolle „InsuranceUsers", mit dem Berechtigungsobjekt „Filing", mit der Operation „Read" auf die Entity-Gruppe „Insurance" angelegt wird, sehen die Benutzer in dieser Rolle nur die Meldungen, die von den Meldern dieser Entity-Gruppe eingereicht wurden. Die Meldungen können dabei nicht bearbeitet werden, weil die Benutzer nur Leseberechtigung haben. Unter „Stammdaten → Berechtigungen" können Berechtigungen auf Entity-Gruppen verwaltet werden. Allerdings stehen nur die Berechtigungen zur Auswahl, die nicht "Nur global" sind ( siehe Tabelle):  Image Modified
Globale Berechtigungen erlauben den uneingeschränkten Zugriff, daher sollten diese mit Vorsicht vergeben werden (z.B. an Administratoren oder Power-User). Diese können unter "Stammdaten → Benutzer und Rollen" ausgewählt werden. Wenn z.B. eine globale Berechtigung für Rolle „Users" und Berechtigungsobjekt „Filing" mit der Operation „Read" angelegt wird, können sämtliche Meldungen von den Benutzern in dieser Rolle nur angeschaut, aber nicht bearbeitet werden. Wie einer Rolle globale Berechtigungen zugewiesen werden können, wird im Kapitel Edit Role beschrieben.
 Image Modified
Folgende Operationen können beim Anlegen einer Berechtigung ausgewählt werden: - None (die Rolle hat keinen Zugriff auf diese Ressource)
- Read (die Rolle hat nur Lesezugriff auf diese Ressource, kann keine Instanzen ändern, neu erstellen oder löschen)
- Write (die Rolle hat Schreibzugriff auf diese Ressource, kann neue Instanzen erstellen und existierende bearbeiten, aber keine Instanzen löschen)
- Admin (die Rolle hat Vollzugriff auf die Ressource, kann neue Instanzen erstellen, ändern und löschen)
Folgende Berechtigungsobjekte existieren im System: | Berechtigungsname | Übersetzung | Mögliche Operationen | Nur global |
|---|
| Administration | Administrierung | Read | Write | Admin | ja | | AnaCredit Converter | AnaCredit Konvertierung | None | Read | Write | Admin | ja | | Banz Converter | Banz Konvertierung | None | Read | Write | Admin | ja | | Bundesbank Converter Tool | Bundesbank Konvertierungstool | None | Read | Write | Admin | ja | | CbC Reporting Tool | Country by Country Reporting Tool | None | Read | Write | Admin | ja | | CreateFiling | Meldung erfassen | Read | Write | ja | | Data Export | Datenexport | Read | Write | Admin | ja | | Data Source Query Management | Datenquellenabfragen-Verwaltung | Read | Write | Admin | ja | | Delete Filing | Meldung löschen | None | Read | Write | Admin | nein | | Filing | Meldungen | Read | Write
(Eingereichte Meldungen können nicht gelöscht werden.) | nein | | Filing Forwarding | Meldungsweiterleitung | Read | Write (Meldungen können aus der Ansicht nicht entfernt werden.) | nein | | History | Historie | Read (Historie kann nicht geändert oder gelöscht werden.) | ja | | InDesign Converter | InDesign Konvertierung | None | Read | Write | Admin | ja | | Jobs Dashboard | Jobübersicht | None | Read | Write | Admin | ja | | Key Performance Indicators | Kennzahlen | Read | Write | Admin | ja | | Key Performance Indicators Results | Kennzahlenauswertungen | Read
(Auswertungen können nicht geändert oder gelöscht werden.) | nein | | KpiQueries | Kennzahlen-Abfragen | Read | Write | Admin | nein | | Masterdata | Stammdaten | Read | Write | Admin | ja | | MiFID II Converter | MiFID II Konvertierung | None | Read | Write | Admin | ja | | Open Filings | Offene Meldungen | Read (Offene Meldungen können nicht geändert oder gelöscht werden.) | nein | | Processing Tasks | Prozessübersicht (von anderen Benutzern angestoßene Prozesse) | Read (Prozesstasks können nicht geändert oder gelöscht werden.) | ja | | Rejected Filings | Abgelehnte Meldungen (von anderen Benutzern) | Read (Abgelehnte Meldungen können nicht geändert oder gelöscht werden.) | nein | | Reporting Currency Converter | Meldungswährung korrigieren | Read | ja | | Reporting Requirements | Meldeanforderungen | Read | Write | Admin | ja | | Reports | Berichte | Read (Berichte können nicht geändert oder gelöscht werden.) | ja | | Set Filing Status | Meldungsstatusänderung | Read | Write (Status können nicht gelöscht werden.) | ja | | Taxonomies | Taxonomien | Read | Write | Admin | ja | | Tools | Tools | Read (Tools können nicht geändert oder gelöscht werden.) | ja | | Validation Rule Report | Validierungsregelbericht | Read | Write | Admin | ja |
| Card |
|---|
|
|
Global permissions and permissions on entity groups can be created in the portal. Permissions for entity groups restrict access to data that refers to the entity group. If, for example, a permission for the role "InsuranceUsers", the permission object "Filing" with the operation "Read" for the entity group "Insurance" is created, the users in this role only see the filings that were submitted by the reporters of this entity group. The filings cannot be edited by the "InsuranceUsers" because they only have the read permission. Under "Master Data → Permissions", permissions on entity groups can be managed. However, only those permissions are available for selection that are not "Global only" ( see table ):
Image Removed
Global permissions allow unrestricted access, so these should be granted with caution (e.g. to administrators or power users). These can be selected under "Master Data → User and Roles". If, for example, a global permission for the role "Users" and the permission object "Filing" is created with the operation "Read", all messages can be viewed by the users in this role, but not edited. The chapter Editing roles tells how global permissions can be assigned to a role
Image Removed
The following operations can be selected when creating a permission:
- None (the role does not have access to this resource)
- Read (the role has read-only access to this resource, cannot edit, create or delete instance documents)
- Write (the role has write access to this resource, can create new instance documents and edit existing ones, but cannot delete instance documents)
- Admin (the role has full access to the resource, can create, change and delete new instance documents)
The following permission objects exist in the system:
| Permission name | Possible operations | Global only |
|---|
| Administration | Read | Write | Admin | yes |
| AnaCredit Converter | None | Read | Write | Admin | yes |
| Banz Converter | None | Read | Write | Admin | yes |
| Bundesbank Converter Tool | None | Read | Write | Admin | yes |
| CbC Reporting Tool | None | Read | Write | Admin | yes |
| CreateFiling | Read | Write | yes |
| Data Export | Read | Write | Admin | yes |
| Data Source Query Management | Read | Write | Admin | yes |
| Delete Filing | None | Read | Write | Admin | no |
| Filing | Read | Write (submitted filings cannot be deleted) | no |
| Filing Forwarding | Read | Write (filings cannot be deleted) | no |
| History | Read (history cannot be changed or deleted) | yes |
| InDesign Converter | None | Read | Write | Admin | yes |
| Jobs Dashboard | None | Read | Write | Admin | yes |
| Key Performance Indicators | Read | Write | Admin | yes |
| Key Performance Indicators Results | Read (reports cannot be changed or deleted) | no |
| KpiQueries | Read | Write | Admin | no |
| Masterdata | Read | Write | Admin | yes |
| MiFID II Converter | None | Read | Write | Admin | yes |
| Open Filings | Read (open filings cannot be changed or deleted) | no |
| Processing Tasks | Read (processes cannot be changed or deleted) | yes |
| Rejected Filings | Read (rejected filings cannot be changed or deleted) | no |
| Reporting Currency Converter | Read | yes |
| Reporting Requirements | Read | Write | Admin | yes |
| Reports | Read (reports cannot be changed or deleted) | yes |
| Set Filing Status | Read | Write | yes |
| Taxonomies | Read | Write | Admin | yes |
| Tools | Read (tools cannot be changed or deleted) | yes |
Validation Rule Report | Read | Write | Admin | yes