Data Security

Basic Security Types

Vista has several different security types. The most commonly used are:

  • Form – Prevents users from accessing forms or specific form tabs.
  • Report – Defines which reports are available to users.
  • Attachment Type – Defines what types of attachments users can access.

There are some limitations with security at this level, especially for corporations with more than one entity.

  1. Even if an employee does not have access to the forms in a company, they will still see it on the company dropdown
  2. If data accessed directly from the database (Through Excel ODBC or SQL) there will be no restriction on the data that can be accessed
  3. Form/Report security does not give the ability to restrict by Job, Employee or CM account.

Data Security Types

There is another level of security that can be implemented called Data Security. Data security secures the data in the database by restricting the data that is returned by the standard views. Regular users are not permitted to access the tables directly and must use these views to access data.

The following data types can be secured:

  • Company
  • CM Account
  • Job/Contract
  • Employee/HR Resource
  • Inventory Location

For companies with multiple entities, Silvertrek recommends implementing data security at the company level.

Implementing Data Security

The steps involved in implementing data security are:

  1. Enable the secured data types and regenerate views
  2. Create security groups and assign permissions to those groups
  3. Add users to the data security groups

As with any major configuration change, testing is critical.