cancel
Showing results for 
Search instead for 
Did you mean: 

Clearwell RBAC (ROLE BASE ACCESS CONTORL)

ISSUE:  We have many E-Discovery admins in a shared architecture - The problem is that they can add themselves to other cases.

QUESTION: Can we make an E-discovery admin policy to only allow them to get to cases coded with XYZ*********  cases?

Can we allow them to create cases with a name code as well as only give out cases with their name type ex. XYZ can only get XYZ cases without being able to add to ABC cases or messing with ABC cases?

The ideal:

All XYZ type accounts that are e-discovery only can see XYZ cases and users, can build cases that are new. But can only be seen by XYZ. Likewise ABC users can do the same but can only act on items that are ABC based.

Thank you!!!

 

 

1 Solution

Accepted Solutions
Accepted Solution!

Hello BCAM, At present

Hello BCAM,

At present Clearwell does not have the access control you've requested by coding this would need to be a feature request, but it does allow for role based access control.

If a users assigned a role that has the permission "Allow system management", this will give them the ability go to System -> Users and amend the access they have by clicking on their username and going to the tab 'Cases' and changing the authorized cases list they have.

If you remove this from the role permissions, they will not be able to do this - they will only have the access assigned by someone with "Allow system management".

It's worth taking a read through the Systems Administrator guide for the version of Clearwell you are working with as this shows how to configure the roles and what the granular permissions mean.

 

View solution in original post

1 Reply
Accepted Solution!

Hello BCAM, At present

Hello BCAM,

At present Clearwell does not have the access control you've requested by coding this would need to be a feature request, but it does allow for role based access control.

If a users assigned a role that has the permission "Allow system management", this will give them the ability go to System -> Users and amend the access they have by clicking on their username and going to the tab 'Cases' and changing the authorized cases list they have.

If you remove this from the role permissions, they will not be able to do this - they will only have the access assigned by someone with "Allow system management".

It's worth taking a read through the Systems Administrator guide for the version of Clearwell you are working with as this shows how to configure the roles and what the granular permissions mean.

 

View solution in original post