Skip to main content
Skip table of contents

Portal Security Permissions

Overview

This program is used to determine the functionality that will be available to:

  • Staff in Staff Kiosk (previously known as Teacher Kiosk).

  • Parents in Parent Lounge.

  • Students in Student Café.

This program contains references to 'Teacher Kiosk'.   From Version 53 'Teacher Kiosk' was renamed to 'Staff Kiosk'.

Staff Kiosk

Because of the large number of security permissions introduced with Staff Kiosk, it is recommended that all security access for Teachers and Non-teaching staff is based around a small number of user 'Roles'. Therefore, setting up individual permission profiles for teachers/non-teachers should be avoided.

Examples of Staff Kiosk 'User Roles' could be:

  • Class teacher.

  • Non-teaching employee.

  • Curriculum administrator.

  • Head of Department/Head of Year.

  • Executive (Deputies, Principal).

Step 1

Create your school's Staff Kiosk 'User Roles' similar to those recommended directly above.

Click the 'New' button at the top of the screen to display the 'User Role' screen.

Enter a code and a meaningful description, e.g. Class teacher.

Use the panels at the bottom of the screen to allocate the appropriate Staff Kiosk users into this role and 'Save' this 'User Role' to the database.

Step 2

The 'User Role' that you created in Step 1 will be highlighted in the drop-down list.

Use the checkbox options to indicate the functionality to which the Staff Kiosk users who belong to this role will have access.

Use the 'question mark' icon (next to each permission) to view where it is used.

As a quicker alternative to ticking each box one at a time, use the 'Fill Down' arrow to assign all permissions and then un-tick the ones to which the Staff Kiosk users who belong to this 'User Role' will not have access.

'Save' the permissions for this 'User Role' to the database.

Step 3

Using the 'Assign Users' link next to the 'User Roles', nominate the users who belong to this role and click 'Save'.

For more information refer to How do I give an employee access to Staff Kiosk? 

You should then log in to Staff Kiosk as a user who belongs to this 'User Role' and check that he/she has been granted the correct permissions.

Only the programs the user has been granted access to in Step 2 will be visible in Staff Kiosk.

Step 4

Complete this process for the next 'User Role'.

Notes Regarding Staff Kiosk Permissions

  1. It is possible to have a Staff Kiosk user assigned to more than one 'User Role'. That user will inherit the combined permissions from the multiple 'User Roles' to which he/she has been assigned.

  2. To review all of the permissions for a single teacher (especially for teachers who may be assigned to multiple roles) use the 'Individual User – Teacher' or 'Individual User – Non-Teacher' options.

  3. You can create individual user profiles for Staff Kiosk users. This is not recommended. If you do decide to create individual profiles, use the 'Individual User – Teacher' or the 'Individual User – Non-Teacher' options.

  4. 'Ghosting'.

Ghosting

Staff Kiosk supports 'Ghosting', where Teacher A can 'Ghost' in as Teacher B. Access to 'Ghosting' for Staff Kiosk users is via the drop-down list next to their name in the toolbar.

There are two factors that determine 'Ghosting':

  1. Which teachers Teacher A is able to 'Ghost' into.
    These are determined by the permissions setup in the 'Ghosting – Allow Access To' section. The options are:

    • Teachers All – This means that a user with this permission will be able to 'Ghost' into all teachers at the school, e.g. The Principal.

    • Teachers - HOD / DA - This means that a user with this permission will be able to 'Ghost' into all teachers who are in his/her department, e.g. Department Heads and Department Administrators.

    • Teachers Buddy - This means that a user with this permission will be able to 'Ghost' into all teachers who are have granted him/her buddy access using Staff Kiosk program Teacher > Teacher Details under 'My Buddies', e.g. Class teachers.

    • Teachers My Campus - This means that a user with this permission will be able to 'Ghost' into all teachers who belong to his/her campus, e.g. Class teachers.

    • Non -Teachers All - This means that a user with this permission will be able to 'Ghost' into all non-teaching Staff Kiosk users, e.g. The Principal.

  2. The level of functionality that is available once the teacher is ghosted in.
    The permissions controlling what Teacher A can access once he/she is 'Ghosted' in as Teacher B are defined in the 'Ghost Access via Homepage' and 'Ghost Access via Top Menu' columns. Several permissions have been deliberately excluded from 'Ghosting' (e.g. Pay Envelopes and Payment Summaries).

A record will be made in the Audit Logs Grid whenever a user ghosts in as another user.

When Teacher A is ghosted in as Teacher B, an email or a notification generated through Staff Kiosk will be from Teacher A.

Take care when allocating 'Ghosting Permissions', that you are aware of the ramifications of the level of 'Ghosting' that will be available to teachers/non-teachers. You should log in as a teacher/non-teacher and test the level of 'Ghosting' before making this generally available.

Click the 'User Permissions' button to produce a listing of the permissions allocated to each user. The listing can be based on individual or multiple Staff Kiosk modules.

Staff Kiosk user permissions can also be assigned in TASS.web program Student Admin > Teacher Records > Teacher Information > Teachers on the 'TK Access' tab and via the 'TK Permissions' link.

For more information, you might like to watch:

▶ Portal Security Permissions for Staff Kiosk Video

Parent Lounge

Use the checkbox options to indicate the functionality that will be available to parents in Parent Lounge.

Use the 'question mark icon' (next to each permission) to view where it is used.

As a quicker alternative to ticking each box one at a time, use the 'Fill Down' arrow to assign all permissions and then un-tick the ones that you don't want to make available to parents.

Click the 'Save' button to add the permissions to the database. You should then log in to Parent Lounge and check that the functionality available to parents is correct.

Student Cafe

Student Café functionality can be assigned to students by:

  • Year group.

  • Individual students.

In most cases, permissions will be provided to students through their year group; however, there may be cases where an individual student is provided with access to additional functionality.

For example, for a student in a position of added responsibility, the school may want to give access to more functionality than what has been given to other students in his/her year group.

Applying Student Café Permissions to a Year Group

To allocate Student Café permissions to students in a specific year group, select the 'Year Group' radio button.

Use the checkbox options to indicate functionality to which students will have access.

As a quicker alternative use the 'Fill Down' arrow to assign all permissions and then un-tick the ones to which students will not have access.

An 'Alert' message will be displayed when students in the nominated year group have been configured with individual permissions.

Hover over the 'question mark' icon (next to this message) to view the students with individual Student Café permissions.

Permissions applied to individual students will override any permissions that have been allocated to a student's year group.       

An 'Alert' will also be displayed where students in the nominated year group do not have a Student Café license (and therefore will not be able to access the Student Café software).

Hover over the 'question mark' icon (next to this message) to view the students that do not have a Student Café license.

Applying Student Café Permissions to an Individual Student

To allocate Student Café permissions to an individual student, select the 'Individual User' radio button.

The permissions that you apply to an individual student here will override the permissions that have been applied to the student's year group.

Enter a 'Student Code' or use the 'Binoculars' icon to search for a student's record.

Use the checkbox options to indicate the functionality to which this student will have access.

As a quicker alternative use the 'Fill Down' arrow to assign all permissions and then un-tick the ones to which this student will not have access.

Click the 'Delete' button to remove permissions that have been applied to an individual student. Once removed, permissions that have been applied to the student's year group will apply.

For more information on setting up access to Student Cafe, see:


JavaScript errors detected

Please note, these errors can depend on your browser setup.

If this problem persists, please contact our support.