OrgChart Now Help Guide

Not In Example

Audience:

Audience: Administrator Users Edition: Enterprise & Premium

Overview

Conditional Row Level Security allows Administrators to restrict users access row-by-row based on a defined set of criteria.

For example, you can restrict employee records from displaying location status when the location of a record is not in a defined list of values.

The following article provides step-by-step instructions for configuring a Conditional RLS profile using the Not In rule type.

Configuring a 'Not In' RLS Profile
  1. Log into OrgChart Viewer.

  2. Click More > Account Settings, and then select the Security option.

  3. Click on the Create New Profile button (under the Row Level Security heading). An Untitled profile is created.

  4. Click on the PencilPad.png icon, and then rename the RLS profile.

  5. Click OK.

  6. Click on the geariconnew.png icon. The Security Configuration panel is displayed.

  7. Optionally, enter a description of the RLS profile into the Description text box.

  8. Click on the Plus.png icon to the right of the Security Rules heading. Conditional Rule 1 is added to the Security Rule column.

  9. Click on the Plus.png icon to the right of the Definitions heading. The Conditional Definition Editor panel is displayed.

  10. Click on the Rule Type dropdown menu, and then select the Not In option.

  11. Click on the New Condition button.

  12. Select a Field from the Field dropdown menu.

  13. Select a Value from the Value dropdown menu.

  14. Click on the RefreshPlus.png to select any additional Values from the Value dropdown menu.

    CRLS_NotIn_Editor.png
  15. Click Save. The conditional definition is displayed in the Definition column.

  16. Click on the Plus.png icon to the right of the Fields heading, and then select a Field from the dropdown menu.

    CRLS_NOTIN_Fields.png
  17. Click Save.

  18. Assign this BLS profile to an Access Group. Reference the Branch Level Security article for instructions on how to assign a BLS profile to an Access Group.

Testing Permissions

Administrators can login as users with different levels of access to test permissions. Reference the Admin User Impersonation article for more information.

The following section tests the RLS profile configured above, which states employee records with a Location which is NOT IN the defined list do not display Location Status.

No Security Profile
CRLS_NotIn_PreSec.png
Security Profile Applied
CRLS_NotIn_SECAPPLIED.png