Users – Manage Users

1. Overview

The Manage Users area is used to manage user accounts including their access details and security permissions.

The user accounts are created after adding staff members via Staff screen.

  • STEP 1: To access the Manage Users area, navigate to the Administration > Manage Users.

The Manage Users area displays all the current system users along the left.

image-20241001-100949.png
Figure 1.1
  • STEP 2: To create a new user click on the Button.

image-20241001-101015.png
  • STEP 3: Type in a username and welcome salutation. Consider using the same naming protocol as in your network. This saves users from having to remember more than one username. Where the system is self-hosted, integration with Active Directory can ensure a universal logon for your users.

  • STEP 4: Select a security role for a user. You can select a combination of security roles for a user, however the highest security level will override the lower levels. If one role allows you permission to carry out a certain action and another role doesn’t, the user WILL be allowed to carry out that action. For example, if a User has Reader AND Director permissions, he or she WILL be allowed to update actions within the Directorate. See the section Security for more information.

  • STEP 5: Select the name of the staff member from the 'Linked Staff' drop-down list. The linked staff member must be the same person as you are setting up the login for (which is set up within the Staff area). This linkage allows the system to recognise the user and display the homepage responsibilities correctly.

  • STEP 6: Define a password and set the user as Active by ticking the box. Inactive users will not appear in Staff lists throughout the system.

Note: When specifying a password, do not use the following characters, as this may cause potential harm to the functionality of the system:

  • < – lesser than character

  • > – greater than character, if a lesser than sign is not used prior to it

  • & – ampersand character

  • "" – double quotes

  • +,-,% – characters found in program code

  • <script> – tags (or any tags)

  • space, tab space, and new line characters (\n)

  • non-ASCII characters

  • STEP 7: Click the save icon.

You can also link staff to the relevant organisational level via the Framework > Staff area.

2. Security

The security model has developed so that each user group has different permissions, allowing security permissions to be linked to individual staff members.  All security levels may not be applicable within your organisation as some are linked to individual CAMMS products.

Camms.Strategy® specific roles:

  • Administrator

  • Access Archive Period

  • Business Planner

  • Business Unit Manager

  • Confidential

  • Director

  • Executive Intelligence

  • Financial Controller

  • Next Business Cycle

  • Operational User

  • Performance Manager

  • Reader

  • Strategic Planner

Camms.Risk® specific roles:

  • Risk Manager

  • Operational Risk Editor

  • Project Risk Editor

  • Strategic Risk Editor

  • Strategic Risk Viewer

  • Operational Risk Viewer

  • Project Risk Viewer

Camms.Project® specific roles:

  • Project Creator

  • Project Manager

  • IPM Administrator

  • Resource Administrator

Personnel Evaluation (Camms.Talent®) specific roles:

  • PES Administrator

Audit Manager Specific Roles:

  • Audit Settings Administrator

  • GOV Audit Administrator

  • OHS Audit Administrator

IBP Specific Roles:

  • IBP Administrator

Workforce Planning (WPC) Specific Roles:

  1. WPC Administrator

RevuMap Specific Roles:

  1. RevuMap Administrator

  2. RevuMap Planning Manager

3. User Roles

3.1 Administrator

The Administrator has access to the entire system excluding the Financial Interface where available. This is the only security level which can edit details in the Framework section and has access to the relevant areas for user maintenance, passwords and rollover.

Planning and Performance Management

Administration

Unlimited Access

Framework

Unlimited Access

Quick Update

Unlimited Access

Strategic Planning Area

Unlimited Access

Service Delivery

Unlimited Access

Business Unit Area

Unlimited Access

Performance Management

Unlimited Access

Move Alls

Unlimited Access

Reports

Unlimited Access

Rollover 'Next Period'*

Unlimited Access

Executive

Executive Module

Unlimited Access

Financial Interface

Financial Interface

Unlimited Access

EIS

Executive Intelligence

Unlimited Access

Risk Management

Operational Risk

Unlimited Access

Project Risk

Unlimited Access

Strategic Risk

Unlimited Access

Risk Linking

Unlimited Access

Risk Settings

Unlimited Access

Task

Task Management

Unlimited Access

cammsproject®

Project Management

Edit own projects only

Refer Rollover Securities for information on how to configure specific securities around rollover.

3.2 Access Archive Period

This security level is used for users (other than Administrators) to be able to view the archived system periods. Administrators can view the archived periods as default, however this role gives the ability for other users to be able to view archive periods, without needing to give them a higher security role like an Administrator.

This will give them the ability to view the archive periods within the Tools drop-down menu, and however exclude them from viewing the rest of the rollover functionality. The archive periods are ‘read only’ for all users.

Please see the Rollover Archive Periods for more information on this section.

3.3 Business Planner

This is a security level for organisations which may have a corporate wide Business Planner. The Business Planner can create new service profiles and service profile groupings which are not restricted to their business unit.  The level does not allow editing of data in the strategic planning level or access to the executive reporting area. Business Planners make use of the performance management section for the purpose of business planning (i.e. they cannot link to goals, outcomes, strategies or organisation levels higher than service profiles).

Planning and Performance Management

 

Administration

No Access

Framework

Read Only

Quick Update

Unlimited Access

Strategic Planning Area

Read Only

Service Delivery

Unlimited Access

Business Unit Area

Unlimited Access

Performance Management

Unlimited Access*

Move Alls

Limited to Business Planning areas

Reports

Unlimited Access

Rollover 'Next Period'*

No Access

Executive

Executive Module

No Access

Financial Interface

Financial Interface

No Access

EIS

Executive Intelligence

No Access

Risk Management

Operational Risk

Create and Edit risks across all Business Units

Project Risk

Create and Edit risks across all Business Units

Strategic Risk

Edit own risks only

Risk Linking

Read only

Risk Settings

Read Only

Task

Task Management

Unlimited Access

cammsproject®

Project Management

Edit Own projects only

*Cannot link KPIs to organisation levels higher than service profiles.

3.4 Business Unit Manager

This level has editing capabilities limited to the Business Unit they belong to. They do not have editing abilities in the performance management area, except for updating their actuals for KPIs (targets can only be modified by the Administrator, Strategic Planner, and Business Planner). The Business Unit Manager level is able to access the Executive Reporting area for the purpose of signing off Executive Comments / Business Highlights.

Planning and Performance Management

 

Administration

No Access

Framework

Read Only

Quick Update

Limited to own Business Unit

Strategic Planning Area

Read Only

Service Delivery

Read Only

Business Unit Area

Can create /update own business unit Actions, SWOT and Core Values.

Performance Management

Limited Access to KPIs, Scorecards and Dashboards linked to own business unit

Move Alls

No Access

Reports

Unlimited Access

Rollover 'Next Period'*

No Access

Executive

Executive Module

Limited Access*

Financial Interface

Financial Interface

No Access

EIS

Executive Intelligence

Unlimited Access

Risk Management

Operational Risk

Create and Edit risks within own Business Unit only

Project Risk

Edit own risks only
 Create new risks within own Business Unit only

Strategic Risk

Edit own risks only

Risk Linking

Operational Risk Linking only

Risk Settings

Read Only

Task

Task Management

Limited to Own Directorate

cammsproject®

Project Management

Edit Own projects only

*Cannot create new executive reports but can view and sign off comments/highlights.

3.5 Confidential

This security level is used only if you have the confidential functionality. The confidential functionality is based on a tick box at Action and KPI level only - ability to make actions and KPIs hidden (confidential) from all users unless they have this security access level.

This security level is given to Users who need access and editing privileges to the 'Confidential Actions and KPIs'. They will also be able to see certain filters 'Show Confidential' in some standard reports.

3.6 Director

This security level is for someone who may have a number of business units below them. They can view any area of the system apart from the financial interface and administration area. They are only able to create, edit and delete information under their own directorate (i.e. Business Units under their directorate). Director level does not have the ability to edit data in the service delivery section – only the Administrator, Strategic Planner and Business Planner have access to this. Director level has full use of the Executive Reporting section.

Planning and Performance Management

 

Administration

No Access

Framework

Read Only

Quick Update

Limited to Own Directorate

Strategic Planning Area

Read Only

Service Delivery

Read Only

Business Unit Area

Limited Business Units within Own Directorate -can create /update business unit Actions, SWOT and Core Values.

Performance Management

Read Only*

Move Alls

No Access

Reports

Unlimited Access

Rollover 'Next Period'*

No Access

Executive

Executive Module

Unlimited Access

Financial Interface

Financial Interface

No Access

EIS

Executive Intelligence

Unlimited Access

Risk Management

Operational Risk

Create and Edit risks across all Business Units

Project Risk

Edit own risks only
 Create new risks within Business Units belonging to own Directorate

Strategic Risk

Edit own risks only

Risk Linking

Read Only

Risk Settings

Read Only

Task

Task Management

Limited to Own Directorate

cammsproject®

Project Management

Edit Own projects only

*They do not have editing abilities in the performance management area; except for updating their actuals for KPIs (targets can only be modified by the Administrator, Strategic Planner, Business Planner and Performance Manager).

3.7 Executive Intelligence

The Executive Intelligence security level allows the user s to view the Executive Intelligence System (EIS) when they do not have an Administrator, Director or Business Unit Manager security level. This includes having the EIS button active on their home page for the user to access.

Planning and Performance Management

Administration

No Access

Framework

No Access

Quick Update

Update Own items Only

Strategic Planning Area

No Access

Service Delivery

No Access

Business Unit Area

No Access

Performance Management

No Access

Move Alls

No Access

Reports

Unlimited Access

Rollover 'Next Period'*

No Access

Executive

Executive Module

No Access

Financial Interface

Financial Interface

No Access

EIS

Executive Intelligence

Unlimited Access

Risk Management

Operational Risk

Edit own risk only

Project Risk

Edit own risks only

Create new risks within own Business Unit only

Strategic Risk

Edit own risk only*

Risk Linking

Limited Access

Risk Settings

Read Only

Task

Task Management

Read Only

cammsproject®

Project Management

Edit own projects only

*Strategic risk link is visible as read only

3.8 Financial Controller

This level is for someone responsible for using the financial interface and is the only user who has the ability to access it. This user has read only access for all other areas of the system, except for the ability to update actions and KPIs and the budget section of the action page.

Planning and Performance Management

 

Administration

No Access

Framework

Read Only

Quick Update

Update Own items Only

Strategic Planning Area

Read Only

Service Delivery

Read Only

Business Unit Area

Read Only*

Performance Management

Update actuals for own KPIs only

Move Alls

No Access

Reports

Unlimited Access

Rollover 'Next Period'*

No Access

Executive

Executive Module

No Access

Financial Interface

Financial Interface

Unlimited Access

EIS

Executive Intelligence

No Access

Risk Management

Operational Risk

Edit Own risks only

Project Risk

Edit own risks only
Create new risks within own Business Unit only

Strategic Risk

Update own risk only

Risk Linking

Read Only

Risk Settings

Read Only

Task

Task Management

Edit Own tasks only

cammsproject®

Project Management

Edit Own projects only

*Except for entering and updating budget information and updating actions within own BU.

3.9 Next Business Cycle

This level enables the user to switch from the current period to the next period created from completion of Stage 1 of Rollover. Depending on the user’s other permissions, the user can potentially undertake business planning in the next period.

This security level is given if you would like to give the individual user the ability to see the 'Next Period' of rollover (i.e. be able to view the Current period/Next period buttons when in-between rollover). This security level is typically given to Managers who need access to go into next period and edit the data whilst in between rollover.

Before assigning this security level ensure that the 'Show system period pane' setting is switched on so that after rollover stage 1, you will be able to view the system period Current period/Next period buttons.

Show System Period Pane

Used in Rollover, activating this feature will make the system period pane visible and also allows authorised users to toggle through the current and next period for the forthcoming business period planning (those with the required security to do so). This setting must be switched on in order to go into the ‘next period’ of the system.

If the setting 'Enable System Period Permission Boost' is switched on, then all users will see the next period automatically (i.e. you don't have to go through and give this security level to all users).

Enable System Period Permission Boost

Used in Rollover, Activating this will enable access to the ‘next period’ for all Users (without having to go through and give them permissions). This is only used if you need all users in your user list to view and access the next period during the rollover.

Please see the rollover for more information.

Planning and Performance Management

Administration

No Access

Framework

Read Only

Quick Update

Update own items Only

Strategic Planning Area

No Access

Service Delivery

No Access

Business Unit Area

No Access

Performance Management

No Access

Move Alls

No Access

Reports

Unlimited Access

Rollover 'Next Period'*

Can Access

Executive

Executive Module

No Access

Financial Interface

Financial Interface

No Access

EIS

Executive Intelligence

No Access

Risk Management

Operational Risk

Edit own risks only

Project Risk

Edit own risks only

Strategic Risk

Edit own risks only

Risk Linking

Limited Access*

Risk Settings

Read Only

Task

Task Management

Read Only

cammsproject®

Project Management

No Access

*Strategic risk link is visible as read only.

3.10 Operational User

This level is for the general user of the system. They are not able to edit actions or performance measures, other than updating progress and actuals.

Planning and Performance Management

 

Administration

No Access

Framework

Read Only

Quick Update

Update Own items Only

Strategic Planning Area

Read Only

Service Delivery

Read Only

Business Unit Area

Read/Update own Actions Only

Performance Management

Update actuals for own KPIs only

Move Alls

No Access

Reports

Unlimited Access (Except they cannot view Financial and Administrator Reports)

Rollover 'Next Period'*

No Access

Executive

Executive Module

No Access

Financial Interface

Financial Interface

No Access

EIS

Executive Intelligence

No Access

Risk Management

Operational Risk

Edit Own risks only

Project Risk

Edit own risks only
 Create new risks for own Actions only

Strategic Risk

Edit own risks only

Risk Linking

Operational Risk linking only

Risk Settings

Read Only

Task

Task Management

Edit Own tasks only

cammsproject®

Project Management

Edit Own projects only

3.11 Performance Manager

This level is for someone who is responsible for performance management and therefore has unlimited access to the performance management area, enabling them to create, edit and link KPIs, Scorecards and Dashboards. The Performance Manager only has updating access to other areas of the system.

Planning and Performance Management

 

Administration

No Access

Framework

Read Only

Quick Update

Update Own items Only

Strategic Planning Area

Read Only

Service Delivery

Read Only

Business Unit Area

Update Own BU Actions Only

Performance Management

Unlimited Access*

Move Alls

No Access

Reports

Unlimited Access

Rollover 'Next Period'*

No Access

Executive

Executive Module

No Access

Financial Interface

Financial Interface

No Access

EIS

Executive Intelligence

No Access

Risk Management

Operational Risk

Edit risks within own Business Unit only

Project Risk

Edit own risks only
 Create new risks within own Business Unit only

Strategic Risk

Update own risks only

Risk Linking

Operational Risk Linking only

Risk Settings

Read only

Task

Task Management

Create and Edit tasks within own Business Unit only

cammsproject®

Project Management

Edit Own projects only

  • Cannot delete KPI nodes, only Administrator is able to delete the KPI nodes.

3.12 Reader

A reader is able to view all areas of the system however they cannot edit or modify anything.

Planning and Performance Management

Administration

No Access

Framework

Read Only

Quick Update

Update Own items Only

Strategic Planning Area

Read Only

Service Delivery

Read Only

Business Unit Area

Read Only

Performance Management

Update actuals for own KPIs only

Move Alls

No Access

Reports

Unlimited Access

Rollover 'Next Period'*

No Access

Executive

Executive Module

No Access

Financial Interface

Financial Interface

No Access

EIS

Executive Intelligence

No Access

Risk Management

Operational Risk

Edit Own risks only

Project Risk

Edit own risks only Create new risks for own Actions only

Strategic Risk

Edit own risks only

Risk Linking

Read Only

Risk Settings

Read Only

Task

Task Management

Update own Tasks only

cammsproject®

Project Management

Edit Own projects only

3.13 Strategic Planner

Access is given to all areas of the system apart from the Administration area and the Financial Interface (where activated). Strategic Planners can create, edit and delete in all other areas of the system, including the Executive Reporting area. They are unable to edit the Framework section however except for Business Units. 

Planning and Performance Management

 

Administration

No Access

Framework

Read Only with limited editing functionality*

Quick Update

Unlimited Access

Strategic Planning Area

Unlimited Access

Service Delivery

Unlimited Access

Business Unit Area

Unlimited Access

Performance Management

Unlimited Access

Move Alls

Unlimited Access

Reports

Unlimited Access

Rollover 'Next Period'*

No Access

Executive

Executive Module

Unlimited Access

Financial Interface

Financial Interface

No Access

EIS

Executive Intelligence

No Access

Risk Management

Operational Risk

Create and Edit risks within Business Units belonging to own Directorate

Project Risk

Create and Edit risks across all Business Units

Strategic Risk

Unlimited Access

Risk Linking

Read only

Risk Settings

Read Only

Task

Task Management

Unlimited Access

cammsproject®

Project Management

Edit Own Projects only

*Can create/edit Directorate and Business unit section within ‘Framework’ area.

3.14 Risk Manager

The Risk Manager is able to view, create, update and delete Operational, Project and Strategic Risk Assessments in the Risk Management area.

Planning and Performance Management

Administration

No Access

Framework

No Access

Quick Update

Update own items Only

Strategic Planning Area

No Access

Service Delivery

No Access

Business Unit Area

No Access

Performance Management

No Access

Move Alls

No Access

Reports

Unlimited Access

Rollover 'Next Period'*

No Access

Executive

Executive Module

No Access

Financial Interface

Financial Interface

No Access

EIS

Executive Intelligence

No Access

Risk Management

Operational Risk

Unlimited Access

Project Risk

Unlimited Access

Strategic Risk

Unlimited Access

Risk Linking

Unlimited Access

Risk Settings

Unlimited Access

Task

Task Management

Create and Edit tasks within own Business Unit only

cammsproject®

Project Management

Edit Own projects only

3.15 Operational Risk Editor

This security level allows the user to edit all operational risks. You would give this security level to an operational user who needs the ability to edit operational risks during a specific time frame or it can be used to give them this power user editing ability without having to give them a 'manager' role to edit all risks.

3.16 Project Risk Editor

This security level allows the user to edit all project risks. You would give this security level to an operational user who needs the ability to edit project risks during a specific time frame or it can be used to give them this power user editing ability without having to give them a 'manager' role to edit all risks.

3.17 Strategic Risk Editor

This security level allows the user to edit all Strategic risks. You would give this security level to an operational user who needs the ability to edit Strategic risks during a specific time frame or it can be used to give them this power user editing ability without having to give them a 'manager' role to edit all risks.

3.18 Strategic Risk Viewer

This security level allows the user s who do not have access to view all strategic risks (this role works when 'can view' security setting is on).

Please contact CAMMS Administrator to activate this setting if you would like to use this role.

3.19 Operational Risk Viewer

This security level allows the user s who do not have access to view all Operational risks (this role works when 'can view' security setting is on).

Please contact CAMMS Administrator to activate this setting if you would like to use this role.

3.20 Project Risk Viewer

This security level allows the user s who do not have access to view all Project risks (this role works when 'can view' security setting is on).

Please contact CAMMS Administrator to activate this setting if you would like to use this role.

3.21 Project Creator

Project creator role is ideally given to project assistants so that they would be allowed to create projects on behalf of the project manager. Project creator will have the permission to create a new project or duplicate a project and edit and manage the project until the initiation of phase one sign off. However, they will not be allowed to delete any project created. This can be done only by the IPM administrator.

Project board and team supersede project creator role. Therefore, if a particular user with the project creator role is attached to the board and team of a particular project, the board and team role permissions would apply.

3.22 Project Manager

The Project Manager role is used within the Integrated Project Manager. Users with this security level are able to manage workflows, create new projects and edit existing ones within the project management area. However, they cannot edit the Settings Configurations.

Planning and Performance Management

Administration

No Access

Framework

No Access

Quick Update

No Access

Strategic Planning Area

No Access

Service Delivery

No Access

Business Unit Area

No Access

Performance Management

No Access

Move Alls

No Access

Reports

Unlimited Access

Rollover 'Next Period'*

No Access

Executive

Executive Module

Read Only

Financial Interface

Financial Interface

No Access

EIS

Executive Intelligence

No Access

Risk Management

Operational Risk

Read Only

Project Risk

Read Only

Strategic Risk

Read Only

Risk Linking

No Access

Risk Settings

Read Only

Task

Task Management

Read Only

cammsproject®

Project Management

Edit All projects

Delete all projects

Have access to re-submit all sign offs

No Access to Administration areas and cannot  re-open projects

3.23 Resource Administrator

The Resource Administrator will give users the ability to view the "Resource Manager' section within the Integrated Project Manager (cammsproject®)/Projects area. If the user does not have this ticked, then the menu item will be hidden from their view.

3.24 IPM Administrator

The IPM Administrator role is used within the Integrated Project Manager. This security level allows the user to have unlimited access within the project management area, allowing access to the Framework area for workflow setup, settings configurations and the set-up and management of projects. Only the IPM Administrator has the ability to re-open a project once it has been closed.

Planning and Performance Management

Administration

No Access

Framework

No Access

Quick Update

No Access

Strategic Planning Area

No Access

Service Delivery

No Access

Business Unit Area

No Access

Performance Management

No Access

Move All

No Access

Reports

Unlimited Access

Rollover 'Next Period'*

No Access

Executive

Executive Module

Read Only

Financial Interface

Financial Interface

No Access

EIS

Executive Intelligence

No Access

Risk Management

Operational Risk

Read Only

Project Risk

Read Only

Strategic Risk

Read Only

Risk Linking

Read Only

Risk Settings

Read Only

Task

Task Management

Read Only

cammsproject®

Project Management

Unlimited Access

3.25 PES Administrator

The PES Administrator security level is used within the Personnel Evaluation System. This security level allows the users to have access to the Administration area to set up users, manage configurations, emails and assessment elements.

3.26 Audit Settings Administrator

Audit Settings Administrator is able to manage the configuration of the Audit area of the organisation. However, this security level allows access only to the Settings area and any other area of Audit Management cannot be accessed. In order to get access to other areas of audit management, this security role must be combined with other roles.

3.28 GOV Audit Administrator

The GOV Administrator can create, edit and delete audits, findings and recommendations for GOV audits only.

Only GOV Administrators can reset a GOV audit that has already been signed off by clicking the Internal Audit Signoff button shown on the right.

3.29 OHS Audit Administrator

The OHS Administrator can create, edit and delete audits, findings and recommendations for OHS audits only.

Only OHS Administrators can reset an OHS audit that has already been signed off by clicking the Internal Audit Signoff button shown on the right.

3.30 IBP Administrator

When a user is designated as the IBP Administrator, he/she will have unlimited access to all the areas of business plan development. Users with IBP administrative privileges will have the ability to create plans, workflows and add resources.

3.31 WPC Administrator

The WPC Administrator will have full editing ability within the Workforce Planning Centre (WPC) solution. Within WPC, Administrators will be able to define the security roles - These roles allow users to define different sets of screen permissions to view, edit, delete and save within various screens in WPC.

3.32 RevuMap Administrator

This security level relates to the RevuMap [Service review] product. The Administrator role will give unlimited access to all areas of RevuMap.

RevuMap Administrator

RevuMap Area

Security Access

Homepage

Unlimited access

Create Service Review

Unlimited access (can create service reviews for any BU/Directorate)

Access Service Review

Unlimited access (can view all service reviews)

Reports

Unlimited access (can generate reports for all service reviews)

Administration

Unlimited access

If you have not purchased this product, then you will not see this security level. Please contact CAMMS if you would like more information on our RevuMap product.

3.33 RevuMap Planning Manager

This security level relates to the RevuMap [Service review] product. This security level allows you to create service reviews for all BU or Directorate. However, has limited access when viewing and accessing the service reviews once created, specific to own area. No Access to Administration area.

RevuMap Planning Manager

RevuMap Area

Security Access

Homepage

Unlimited access

Create Service Review

Unlimited access (can create service reviews for any BU/Directorate)

Access Service Review

Limited access. Accessible (can view service reviews from own BU/Directorate and those that the user is the Responsible Officer for)

Reports

Limited access. Accessible (can generate reports for service reviews from own BU/Directorate and those that the user is the Responsible Officer for)

Administration

No access.

If you have not purchased this product, then you will not see this security level. Please contact CAMMS if you would like more information on our RevuMap product.


<< Back to main section
Users