User Maintenance
Overview
This program is used to create and maintain TASS.web users and their profiles.
A user can be registered to operate in one or more of the following 'areas' within the TASS.web software:
Financial Administration (FIN).
Payroll/HR (PHR).
Student Administration (SAD).
As a user is registered in each of these 'areas' a user licence is 'consumed' (or used up) from that 'area'.
The initial 'User Maintenance' screen displays the current licence registration information for the school.
In the example directly above, the school is licensed for:
32 Financial Administration licences (FIN), of which 19 have been registered against users
32 Payroll/HR licences (PHR), of which 18 have been registered against users
32 Student Administration licences (SAD) of which 20 have been registered against users.
The system will prevent the registration of a user into an 'area' when the school does not have remaining licences available. The following warning will be displayed:
Licences can be removed from a user when that user no longer needs to access TASS.web (or an 'area' of TASS.web). To remove a licence, edit the user record and un-tick the appropriate checkbox (or checkboxes) in the 'Licence Registrations' section on the 'General' tab.
The root user has access to all areas and does not take up a licence.
TASS.web will not allow the same user account to be logged on at the same time from different PCs. When a user logs into TASS.web, it will automatically terminate all other sessions for that user that are running on other PCs.
The system does allow a user to be logged on multiple times from the same PC.
This program is also used to establish and maintain the permissions for users.
Click the 'User Permissions' button to produce a listing of the permissions allocated to each user. The listing can be based on individual or multiple TASS.web modules.
Adding a New User
Click the 'New' button to create a new user.
Viewing and Editing a User
To 'View' or 'Edit' a user, click the associated link in the 'Action' column.
Click the 'Login History' link to display a list of this user's TASS.web login history. The pop-up will display the last 25 logins.
Use the 'Print All' button to generate a listing of this user's entire login history.
General Tab
User General Details | |
|---|---|
User ID | This is the user code that the user will log on with. It is an 8 Character Alpha/Numeric code. |
Name | This is a 40 character field. |
*Password | This is the password that the user will use to gain access to TASS.web. TASS.web supports mapping for individual users to an LDAP directory structure or SAML. An LDAP mapping means that password security can be maintained using the features available in Microsoft Active Directory, Novell eDirectory or Apple Open Directory. If SAML is enabled, the user will be automatically logged-into TASS.web if their credentials have already been authenticated in another application. You still need to make an entry into this field although this password will not be used. This is an 8 character field. |
*Company | This will determine the default school (company) for this user. If this user is to work in multiple schools/companies you will need to assign these on the 'Company' tab in this program. This tab becomes available after you click the 'Save' button on this tab. Only companies that are assigned to you will be available in this picklist. |
*Language | English is the only option available at the moment. |
TASS.web Home | This is an optional field. This area is used to determine the default home page for the user. You could for example make this your school website. This can be changed by the individual using the 'Bookmarks' icon on the 'Bookmarks' panel, in the left menu. For more information, refer to 'TASS.web User Interface'. |
The user's email address | |
Phone | This is an optional field. A contact phone number for the user. |
Licence Registrations | |
Financial Administration User | Tick this box if this user is to be allocated a Financial Administration Licence. The modules that this user could access include:
Access to programs within these modules is determined by the permissions set up for this user. Your school must also be licensed to use the relevant module for a user to be able to access programs within the module. |
Payroll/HRM User | Tick this box if this user is to be allocated a Payroll/HRM Licence. The modules that this user could access include:
Access to programs within these modules is determined by the permissions set up for this user. Your school must also be licensed to use the relevant module for a user to be able to access programs within the module. |
Student Administration User | Tick this box if this user is to be allocated a Student Administration Licence. The modules that this user could access include:
Access to programs within these modules is determined by the permissions set up for this user. Your school must also be licensed to use the relevant module for a user to be able to access programs within the module. |
The system will prevent the registration of a user into an area when the school does not have enough licences. The following warning will be displayed:
Click the 'Save' button and the same screen will be displayed with a second tab labelled 'Company'.
This is where you can add access for additional schools/companies for this user.
Company Tab
This is where you can add access to additional schools/companies for this user.
Move the appropriate companies from the 'Unassigned Companies' column to the 'Assigned Companies' to provide access for this user to these companies.
Companies that you do not have the authority to assign will appear in grey.
The root user will have access to all companies.
Employee Mappings Tab
A connection must be established between certain TASS.web Users and their Employee Code in order to use certain functionality, that is, the ability for a TASS.web User to edit or cancel an imported Leave Application.
Each company for which the User has been assigned displays.
Click 'Edit' next to the appropriate company and enter the user's Employee Code if known, or use the binoculars icon to search and select from the Employee list.
Payroll, HR or other relevant staff must have their TASS.web User ID mapped to an Employee ID to be able to edit or cancel Employee Leave applications that have been imported from Staff Kiosk.
The Employee Mappings tab displays to users who have the 'Employee Mappings tab' permission point located in the 'Administration' section.
TASS.web > System Admin > Users > Security Role Permissions.
Deleting a User
You can delete a user account; however, there is no requirement from a software perspective to do so.
By deleting a user account, you may lose the ability to determine the full name of a past user who last updated a record or processed a function.
Setting Permissions for a User
A list of current users is displayed on the screen. Click the 'Permissions' link to add or modify a user's profile.
All TASS.web modules are then displayed grouped by 'module'.
For each security point, there are columns labelled 'View', 'Add', 'Edit' and 'Delete' (displayed on the right-hand side of the screen). We will refer to these as 'permissions'.
You can individually select each security point/permission combination for this user.
As a quicker alternative use the 'Fill Down' arrows to quickly assign the permission for this user for all modules or within a single module.
Note the difference between the fill down icon for all modules and the fill down icon for a single module.
If there is an 'R' next to the security point permission it means that this is being derived from the 'role' that the user has been assigned to. You cannot remove the permission for a security point for this user if it is derived from a role (has an 'R' next to it), but you can add additional security point permissions for those that are not derived from a role (that don't have an 'R' next to them).
In other words, you can add selected security point permissions for a user to compliment the ones they automatically get from a role that has been assigned to them
Click 'Save' to commit this user's profile to the database.