Who is this article for?

System Administrators who want to understand access permissions.

Administrator access is required to assign permissions.

The aim of this section is to provide system administrators with a detailed explanation of all existing permissions to determine the access rights to be given to Business Users in the online tracking module.

1. Understanding Controls Management
2. Allocating maintenance permissions
3. Assigning metadata template permissions
4. Managing notification template permissions
5. Assigning recommendation and action tracking permissions
6. Managing report template designer permissions
7. Allocating other important permissions

1. General Notes

1.1 User rights

Below is the sequence of checks that Internal Audit runs when using the online tracking system:

• The system verifies if any Work Programs are open. If they are, associated recommendations will be set to read-only mode.
• Next, the system examines the recommendation status edit rights for each user. These rights determine the editing capabilities for recommendations in specific status levels assigned to users.
• Finally, the system evaluates the applied methodology for each field to determine its editability status. This evaluation is performed on a field-by-field basis according to the configured settings.

1.2 Online maintenance permissions

All client configuration/ maintenance permissions given to an Audit User in the client database will also be applicable to the online configuration menu.

For example, Recommendation Status Maintenance and System Configuration Access are giving the users access to these sections in both the client and the Online Tracking system.