Configure field privileges for business application user roles
The privileges specify whether you can create, read, update, and delete each field of a record in your business application. The create, read, update, and delete privileges that you configure within the Records tab aren't automatically assigned to all the fields within the Attributes tab. You can fine-tune the privileges on the Attributes tab without dependance on the record-level privileges.
Using this tab, you can provide partial access to fields within records pertaining to the business entity. For example, you can choose not to assign read privileges for certain fields within a record. This will enable you to hide specific set of fields for a user with that custom user role.
The following table describes the behaviour of field privileges:
Privilege
Set to Enabled
Create
- Create records based on the fields for which the users have the create privilege.
- Enter values in empty fields of existing records.
Read
View the fields for which users have the read privilege. You can view fields when you open a record, view source records, and create filtered search.
Note: If you don't have the read privilege for a field, you can view the field but not its value.
Update
Update the existing values of fields and fields in field groups for which users have update privilege.
Delete
Delete field group entries or values of fields for which users have the delete privilege.
Note: Ensure that you also set the read privilege. Without the read privilege, the field or field group is not available for the users to delete the values.
1In Business 360 Console, click Security. Click the custom user role for which you want to assign individual field privileges.
The user role details page appears.
2 Ensure that you select the required business entity.
3On the Attributes tab, select required privileges for each field or field group.
If you assign a privilege to a field group, the privileges aren't automatically assigned to all fields within the field group. The check boxes for these privileges are disabled on the user role details page. As a workaround, to assign a privilege to field groups and their fields, select the header-level checkbox for each privilege on the Attributes tab. This enables the privileges for all field groups and their fields, but you can't fine-tune these privileges.