You can set up security for some specific transactions (such as adding addresses) within the Circulation Services menu. First, you must establish user IDs, user groups, and security IDs. Then, using this option, you can limit specific transactions to only those users with a specific security ID. Only one security ID can be assigned to a transaction type. If you want to change who has access to this transaction, you may have to set up a new security ID with different groups associated with it.
You can also implement data masking using transaction security.
Note: You cannot add or delete transaction security items. Also, when modifying an item, only the security ID can be changed.
Select Transaction Security from the Security menu to display the Transaction Security window.
Select a security item in the list and click the Modify icon.
Select a security ID from the Security combo box. Only users that have this security ID will be able to carry out this transaction.
Click OK to apply this security ID to the transaction.
AAMHistDrawAdj
Use the draw adjust code for AAM history adj
ACBatAccountPmt
Accept account payment batch
ACBatMiscCharge
Accept misc. charge batch
ACBatRefund
Accept refund batch
ACBatReject
Account Payment Accept
ACBatRtDrawAdj
Accept route draw adjust batch
ACBatRtReturn
Accept route return batch
ACBatSCDrawAdj
Accept draw adjust batch
ACBatSCReturn
Accept return batch
ACBatSubscrPmt
Accept subscriber payment batch
AcctRateImpEdit
Account Rate Import edit
AcctWrittenOff
Allow accounts to be written off
AddressAdd
Add an address
AddressDigitMod
Modify - Address (Digital)
AddressMod
Modify - Address (Physical)
AllowDrwChgOvrd
Override Setup field for draw changes
APCollectorPmt
Create collector payment
APInvoiceApply
Select the “invoice” application method
ARS-Add
Allow add in Account Rate Setup
ARS-Delete
Allow delete in Account Rate Setup
ARS-Modify
Allow modify in Account Rate Setup
AS-Account
Allow accounts to be updated in Account Services
AS-Change
Allow accounts to be changed in Account Services
ASDisputeInv
Allow account invoices to be disputed
AS-Distribution
Allow distribution to be added/modified in Account Services
ASInvResolve
Allow invoice disputes to be resolved
AS-Levy
Allow levies to be updated in Account Services
AS-Notification
Allow notifications to be updated in Account Services
AS-Recurring
Allow recurring charges to be updated in Account Services
AS-Terminate
Allow accounts to be terminated in Account Services
ASViewAcctPmts
View monetary amounts for accounts in Route Service
AuthNumEntry
Enter credit card authorization numbers
AutoAccptBatch
Override auto-accept batch setting
BusRuleEncrypt
View encrypted Business Rule settings
CanSendEmail
Can Send Emails
CanUseCredCard
Enter CC payment and auto-renew
CCSurchargeOvrd
Allow subscriber credit card surcharge to be waived
ChargeAccount
Charge account in Dispatching
Chg GUI Labels
Change component labels in graphical
Chg GUI Layout
Change Graphical Layout
CRControlTotals
Modify payment control totals
CSABankDPayment
Add bank draft payment
CSACashPayment
Add cash payments
CSACheckPayment
Add check payments
CSACreditStatus
Add a subscriber credit status
CSACredPayment
Add credit card payments
CSAFormalCmplt
Add formal complaints
CSAGraceWO
Write off grace
CSAltAccount
Allow updating alternate accts
CSARefund
Add refund if refund available=0
CSBBillingChg
BackDate - Billing Method Change
CSBCSendInvRnwl
Modify Invoice Subscriber and Renew After This Term fields in billing change
CSBDelivSched
BackDate - Deliv Sched Change
CSBExpireChange
BackDate - Expire Change
CSBGraceWOff
Back Date - Grace Writeoff
CSBMoveIn
BackDate - Move In
CSBMoveOut
BackDate - Move Out
CSBNote
BackDate - Note
CSBPayment
BackDate - Subscriber Payment
CSBPymtCancel
BackDate - Payment Cancel
CSBRefund
Back Date - Refund
CSBRefundWOff
Back Date - Refund Writeoff
CSBRenewal
BackDate - Renewal
CSBReroute
BackDate - Route Reassignment
CSBRestart
BackDate - Restart
CSBStart
BackDate - Start
CSBStop
BackDate - Stop
CSBTempAddrEnd
BackDate - End Temp Add
CSBTempAddress
BackDate - Temporary Address
CSBTransferOut
Back Date - TransferOut
CSCancelGrpPymt
Cancel Group Payment
CSDBillingChg
Delete - Billing Method Change
CSDBonusDay
Delete - Bonus Days
CSDComplaint
Delete - Complaint
CSDContact
Delete - Contact
CSDDelivSched
Delete - Delivery Sched Change
CSDFComplaint
Delete - Formal Complaint
CSDMoveIn
Delete - Move In
CSDMoveOut
Delete - Move Out
CSDPayment
Delete - Subscriber Payment
CSDReroute
Delete - Route Reassignment
CSDRestart
Delete - Restart
CSDReward
Delete - Reward
CSDStart
Delete - Start
CSDStop
Delete - Stop
CSDTempAddrEnd
Delete - End Temp Address
CSDTempAddress
Delete - Temporary Address
CSDTransferOut
Delete - Transfer Out
CSMAAMColumn
Modify - AAM Column
CSMAAMZone
Modify - AAM Zone
CSManualRefund
Allow Manually Issued Refunds
CSMAutoRenew
Modify - Auto Renew
CSMBillingChg
Modify - Billing Method Change
CSMComplaint
Modify - Complaint
CSMContact
Modify - Contact
CSMCreditStatus
Modify - Subscriber Credit Status
CSMDelivSched
Modify - Delivery Sched Change
CSMEndGrace
Modify - End GracePeriod
CSMExpire
Modify - Expire
CSMExtendDays
Modify - Complaint Extension
CSMFeeOptOut
Modify-Printed Bill Fee OptOut
CSMFeeWaiveOff
Modify - Fee Waive Off
CSMFeeWriteOff
Modify - Fee Write Off
CSMFmlComplaint
Modify - Formal Complaint
CSMMerchDate
Modify Merchandise Fulfill Dt
CSMMoveIn
Modify - Move In
CSMMoveOut
Modify - Move Out
CSMNewPswdBtn
Modify - NewPswdBtn
CSMNote
Modify - Note
CSMPayment
Modify - Subscriber Payment
CSMPymtCancel
Modify - Payment Cancel
CSMReqRefund
Modify - RequestedRefund
CSMReroute
Modify - Route Reassignment
CSMRestart
Modify - Restart
CSMReward
Modify - Reward
CSMStart
Modify - Start
CSMStop
Modify - Stop
CSMTempAddrEnd
Modify - End Temp Address
CSMTempAddress
Modify - Temporary Address
CSMTransferOut
Modify - Transfer Out
CSMTrial
Modify - Trial
CSMWriteOffType
Modify - WriteOffType
CSOComplaint
Override Complaint Code after processing
CSPriceQuote
Enable Create Quote button and RENEW flag
CSReasnOverride
Override Reason Codes
CSSBFBBillChg
Show - BalFwd Billing BillChg
CSSComboTransfr
Show - Combo Transfer
CSSGraceAccrual
View Grace Accruals in Customer Service
CSSMarketTerm
Show marketing terms
CSUComplaintEnd
Can update complaint end date
CVV2Entry
Can override the CVV2 for a payment
DayPassMakeGood
Enter day pass make goods in Customer Service
DidNotOrderOvrd
Override rules for “did not order” reason codes
DigiAccDrawAdj
Create draw adjustment with the adjustment code specified for Digital Access Draw in the Business Rules
DispatchOvrride
Override dispatch cutoff
DistribMaintBkp
Use the Distribution Maintenance Backup option
DistribMaintDte
Allow right click Show Dates
DistribMaintSes
Bypass Distribution Maintenance session backup
DistribMaintUpd
Modify Information in Distribution Maintenance
DrwLockOverride
Override draw change lockouts
DrwToleranceOvr
Override draw change tolerances
FCDComplaint
Modify formal complaint date
FCTComplaint
Modify formal complaint time
FuturePayment
Future-date payments in Customer Service
GDCZeroDraw
Group Draw Change - Zero
GraceWOffDrwAdj
Grace writeoff adjustments using Route Adjust
GraceWOffUnpaid
Is Writeoff Now Unpaid (Grace Writeoff report)
GUIEditToolbar
Edit Graphical Toolbar Setup
IMDeadlineOvrd
Override IM Schedule Deadlines
ImportSubsRates
Import option of Export/Import Sub Rates
MapCSAddress
View the Customer Service address map
MapCSSingleCopy
View the Customer Service single-copy locator
MapRSRouteList
View the Route Service delivery list map
MapRSSingleCopy
View the Route Service single copy map
MapTMCampaign
View the TM campaign results map
MapTMProximity
Use Proximity map in Targeted Marketing
MsgAllEntry
Select “all” when entering messages
MsgBroadcast
Send broadcast messages
MsgDeadlineOver
Add delivery deadline override with message
OptOutVCRSetup
Opt out Vacation Credit Rules
PrintBankAcct
Display full info on the Subscriber Pmt Journal
PrintCreditCard
Display full info on the Subscriber Pmt Journal
PrintPayPal
Display full info on the Subscriber Pmt Journal
Program Stack
Stack Ctrl-G to display program
PurgeCCAudit
Purge credit card audit data
RateCdOverride
Override rating validation setup
RouteRateClass
Update a route’s rate class
RSBatDrawChange
Accept Batch - Route Draw Chg
RSDDrawChangeR
Delete - Draw Chg (Routes)
RSDDrawChangeS
Delete - Draw Chg (SingleCopy)
RSDReverseDrawR
Delete - Draw Rev (Routes)
RSDReverseDrawS
Delete - Draw Rev (SingleCopy)
RSDShortage
Delete - Shortage
RSMDrawChangeR
Modify - Draw Chg (Routes)
RSMDrawChangeS
Modify - Draw Chg (SingleCopy)
RSMReverseDrawR
Modify - Draw Rev (Routes)
RSMReverseDrawS
Modify - Draw Rev (SingleCopy)
RSMShortage
Modify - Shortage
RSShowLevy
Show account levy
ShowAcctTaxInfo
Show account tax information
ShowBankAccount
Show bank draft information
ShowCreateUser
Show Create User
ShowCreditCard
Show credit card information
ShowPayPal
Show PayPal information
SRS-Add
Allow add in Subscriber Rate Setup
SRS-Delete
Allow delete in Subscriber Rate Setup
SRS-Modify
Allow modify in Subscriber Rate Setup
SubRateExpImp
Access to Subscriber Rate Export/Import
Task
Generate Tasks
TaskComplete
Mark a task as complete
TMDrawChangeAdd
Add standing draw in TM
TMDrawChangeDel
Delete standing draw in TM
TMDrawChangeMod
Modify standing draw in TM
TMDrawChangePro
Process standing draw in TM
TrnLeadTimeOvrd
Override min. number of future-dated days
UnauthRetrnOvrd
Unauthorized Returns Override
UpdAcctActive
Change account’s bill source information
UpdateCollector
Modify the collector in account setup
UpdateCreateGL
Create GL in Unearned Revenue and Grace Due
UpdSubPayTerm
Update term for subscriber payment
VacationPack
Control vacation pack updating
WebCampaign
Access Web Campaign module
WebDrawChgOvrd
Override/reject web draw changes
WebDrawChgRvw
Accept/refuse web draw changes
WebRtrnOverride
Override/reject web returns
WebRtrnReview
Accept/send back web returns
Website Admin
Access to iServices Subscriber Admin module
Data masking is used to allow only selected Circulation users to view and print private information, while preventing all other users from doing so. Users without security rights will see “masked” information, which means that most digits of a number are replaced with asterisks. A masked credit card number, for example, will be displayed as ************0123, with only the last four digits visible to the user. Users with security rights will see the whole number. The diagram below shows the level of security that data masking provides.
Note that, when using data masking alone, information is not masked in any way within the database. Any person who can access the database directly, such as a Naviga Support analyst or a developer who runs custom programs, ad hoc queries, Results queries, etc., will see the full data. Unauthorized users (i.e., “hackers”) who are able to gain access to the database will also see full data. To protect private information within the database, you must use database encryption.
Data masking is set up within Transaction Security (Setup | System | Security | Transaction Security). By default, these items are marked NOT ACTIVATED, which means that the data for these items will be masked for all users until you “activate” access to an item for a security group.
Four security items in Transaction Security control the masking of private data:
ShowCreditCard determines which security group can view and print full credit card numbers. All other security groups will see only the last four digits of credit card numbers.
ShowPayPal determines which security group can view the full PayPal VaultID and Email Address. All other security groups will see only masked data in these fields.
ShowBankAccount determines which security group can view and print full bank numbers and bank account numbers. All other security groups will see only the last 2 digits of the bank number and the last 4 digits of the bank account number.
ShowAcctTaxInfo determines which security group can view and print the full social security number and Tax ID of accounts. All other security groups will see only the last 4 digits of the social security number and Tax ID.
Remember, all data will be masked until you perform this setup.
