When ATG Commerce Service Center is installed, it is preconfigured with various access rights, global roles, and access controllers. These elements are used to restrict access to certain pages in the Commerce Service Center.
1. Default Access Control Configuration:
The default access control configuration provided with ATG Commerce Service Center includes a number of access rights, roles, and access controllers. The access controllers are Nucleus components, which are added to your ATG installation when you install ATG Commerce Service Center. The access rights and roles are repository data that you import into your database (from supplied XML files) as a configuration step after you install ATG Commerce Service Center. For more information about installing and configuring ATG Commerce Service Center.
1.1 Access Rights:
The basic security unit is the access right. The access rights for ATG Commerce Service Center are subdivided according to the following classification:
a) Tab Security - Security for the Commerce Service Center tab accessed through the Service Framework
tabs
b) Panel Security - Security for a panel
c) Element Security - Security for a data field or action element within a panel
ATG Commerce Service Center comes preconfigured with access rights that have been designed based on specific CSR agent activities. A subset of these rights is assigned to each Commerce Service Center role, and you assign the appropriate roles to agents to give them the access rights they need.
Add additional information and descriptions on these preconfigured tables. The following table summarizes the preconfigured Commerce Service Center access rights:
ID Name
issueCredit commerce-custsvc-issue-credit-privilege
adjustPrice commerce-custsvc-adjust-price-priviege.
1.2 Global Roles:
ATG Commerce Service Center comes preconfigured with four global roles for controlling the access rights granted to CSR agents. The Commerce Service Center roles use template roles to simplify their configuration:
a) csrTicketing - Includes the access rights necessary to use the Ticketing UI
b) csrOrders - Includes the access rights needed to create and modify orders. In addition,
this role includes csrTicketing as a template role, so all ticketing access rights are included
c) csrProfiles - Includes the access rights needed to create and modify customer profiles.
In addition, this role includes csrTicketing as a template role, so all ticketing access rights
are included
d) csrManager - Includes csrOrders (and thus csrTicketing) and csrProfiles as template roles
For a list of all access rights for each role, and a description of the access right
When you create an agent’s profile in the Internal User Profile Repository, you assign the agent a role that corresponds to the tasks the agent is authorized to perform. For example, a typical agent may be able to create and modify orders, but only a manager can override prices and issue credits.
1.3 Creating New Roles:
If you have requirements that none of the existing roles meet, you can create new roles.
To create new roles:
1. Open the BCC > Personalization page.
2. Select Internal Users.
3. Use the Show menu to select Organizations and Roles.
4. Open the Global Roles folder. Identify the location to store the role.
5. Click the Create New icon to create the new role.
6. Enter the name of the new role.
7. Select the Access Rights tab to add existing access rights, or to create new access rights by
specify Direct Access Rights or incorporating the access rights from existing roles by using
the Template Role field.
8. Once you are finished, click Create to save your settings.
2. Creating Agent Profiles:
By default, ATG Commerce Service Center is not preconfigured with any agent profiles. As part of setting up ATG Commerce Service Center, you need to:
1. Create a profile in the Internal User Profile Repository for each agent.
2. Assign each profile a global role.
If you want to create a sample account for evaluation purposes, ATG Commerce Service Center provides a file named csrEvalUser.xml. Importing the data from this file creates an account whose username and password are both csr. This account is assigned the csrManager role, which means it has access to all areas and activities in the Commerce Service Center and the Ticketing UI.
Note: This account should be added only to the database that is provided with the ATG platform for evaluation purposes. You should not include it in a production database, as this is a serious security risk.
No comments:
Post a Comment