This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Hyland Community
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Security Groups

Go to answer
Ibrahim_Oweidat
Champ on-the-rise
Champ on-the-rise

‎08-08-2022 03:06 AM

Hi,

 

one user has assigned into two security groups, one security group with print privilege and one without. each security group is assigned to a different document type group and document  type.

 

the issue is the user can print the documents in both document types which is wrong. 

 

any solution.

Labels:
0 Kudos
1 ACCEPTED ANSWER

Go to answer
George_Sialmas
Elite Collaborator
Elite Collaborator

‎08-08-2022 03:15 AM

@Ibrahim Oweidat If you are referring to OnBase, then this is expected behaviour. When a user is a member of more than one User Group, they inherent combined privileges from all the User Groups they are a member of. If you do not want the user to print documents assigned to one of the document types, then you need to configure override privileges on that document type to explicitly configure it to not allow printing. 

 

Good luck

George

View answer in original post

7 REPLIES 7

Go to answer
George_Sialmas
Elite Collaborator
Elite Collaborator

‎08-08-2022 03:15 AM

@Ibrahim Oweidat If you are referring to OnBase, then this is expected behaviour. When a user is a member of more than one User Group, they inherent combined privileges from all the User Groups they are a member of. If you do not want the user to print documents assigned to one of the document types, then you need to configure override privileges on that document type to explicitly configure it to not allow printing. 

 

Good luck

George

Go to answer
Raymond_Colbert
Champ on-the-rise
Champ on-the-rise
In response to George_Sialmas

‎04-03-2024 11:51 AM

@George Sialmas Please link me to OnBase documentation explaining how user group security works with examples please, such that someone wanting to configure security as @Ibrahim Oweidat desired it to work can actually implement it.  We have apparently had user group security set up incorrectly for 24 years.  It would help if Hyland made this clear in the documentation and provided detailed information on how best to implement it.

 

Thank you,

Ray Colbert

0 Kudos

Go to answer
George_Sialmas
Elite Collaborator
Elite Collaborator
In response to Raymond_Colbert

‎04-03-2024 03:30 PM

@Ray Colbert I don't know if there are examples, however what I can share with you is that the SecurityBestPractices_XX.pdf MRG has a dedicated chapter called Security Model Overview which explains the concept of least privilege and the behaviour of when a user is a member of multiple User Groups. If you are after information on how to configure override privileges then this can be found in the System Administration MRG. 

 

Respectfully,

George

0 Kudos

Go to answer
Melissa_Foster
Star Collaborator
Star Collaborator
In response to Raymond_Colbert

‎04-05-2024 05:47 AM

@Ray Colbert , we went through the conversion from default security to least privileged access (adding overrides).  It is a time-consuming process to ensure that people do not lose the access that they need to do their jobs. 

 

We ended up creating 2 or 3 user groups per Document Type Group (depending on business need).  One for Read, one for Create/Modify/ReIndex, and one for Create/Delete. 

Note: delete is required for splitting documents if you want to remove the pages from the original document.  

 

I would advise researching the current security that's being applied to your users and work with the business to determine what they actually need the members of the groups to receive.  Some of my business units didn't realize what they actually had access to, and it took a bit for everyone to switch the thought processes.  

0 Kudos
Getting started

Find what you came for

We want to make your experience in Hyland Connect as valuable as possible, so we put together some helpful links.

Copyright © 2024 Khoros, LLC