ARTICLE: User Accessibility Management

ARTICLE: User Security and Accessibility Levels

Reach Infinity - User Access Controls

Infinity is the name of the Reach User Access Security System. This is a robust and flexible system that allows you to have control across the entire user base to manage the Access, Behaviour and Control functions of every individual user in Reach. 

There are two components in the structure of Infinity Access Control.  

  1. Base Security Profiles
    Base Security Roles are sets of permissions that are saved as a security profileYou can have an unlimited number of Base Security Profiles and each Profile can have a different set of Access, Behaviour and Control permissions as its default settings.

  2. User Roles
    As you create different types of User Roles in Reach (eg: Faculty, Leave Approver, Administrator) you can then allocate a Base Security Profile to each User Role. This sets the default permissions for Access, Behaviour and Control functions to each of the User Roles.

You can have an unlimited number of Base Security Profiles and User Roles in REACH. 


Creating Base Security Profiles

Base Security Profiles are the foundation of the Infinity User Access Control system in Reach. A Base Security Profile is a default set of permissions that determine Access, Behaviour and Control capability for any User Role that has the Security Profile.  

Reach has a number of Base Security Profiles presets

Your Reach portal already has a number of Base Security Profiles established as default settings. These are based on common security settings that we see implemented across our user base. The simplest way to create additional profiles is to Clone an existing profile and then adjust the permission settings that you wish to alter.

There are 24 categories of Permissions that can be set for any Base Security Profile and creating a new profile is simply a matter of configuring and saving a set of permissions for each of the Base Security Profiles that you want to maintain.  

Each category of Permission has a set of capabilities and each of these individual capabilities need to be enabled or disabled in order to create the Base Security Profile.  

Managing User Roles

You can create an unlimited number of User Roles in Reach. For each User Role that you create you need to apply a Base Security Profile (eg: Administrator) to the role which sets out the Access, Behaviour and Control permissions for that User Role across the various modules in Reach.

How to Create a new User Role

  1. Go to System Config >> Infinity and select the Roles Tab on the left side.
  2. Select the Add New Role button
  3. Give the Role a name and set the Base Security Profile for the User Role

This will apply the Base Security Level permissions to all users who have been set with the User Role in their personal profile (Security Setting)

You can manage User Roles in Bulk or individually

An important feature of the Reach Infinity User Access Control system is that it allows you to manage permissions for Users at an entire "Role" level or at the "Individual" user level.

How to adjust an individual user's permissions

There are times when you may need to adjust an individual's accessibility permissions so that they may perform their role adequately.  Rather than requiring you to create an entirely new User Role for that individual user Reach allows you to edit an individual's accessibility permissions in their user profile. This enables you to adjustment permissions for that individual from the Base Security Profile that is set for their User Role. 

To adjust an individual user's permissions from the defaults that are provided by the Base Security Profile applied to their User Role go to the user's profile page and edit their individual permissions in the "Accessibility" Tab of their user profile.

    • Related Articles

    • ARTICLE: Update Existing Staff Account Settings

      There are instances where existing Staff members at a school will change positions or responsibilities from one school year to the next.  When this occurs, you do not need to create a new Reach user account for an existing Reach user.  You may need ...
    • ARTICLE: People Management - Permissions

      Once a contact profile has been created with a specific role, many security / access / permissions are connected to that role type via system configuration. These settings can be further refined on an individual level via the Permissions tab within ...
    • ARTICLE: Create a New User Manually

      Creating a New User Account Manually Go to People Management Click New Contact Click the Personal tab and fill in the appropriate fields Mandatory fields are First Name, Last Name, Email, Mobil Click the Security tab and fill in the appropriate ...
    • ARTICLE: Staff Mobile App User Guide

      Mobile App User Guide The Reach Mobile App is designed for use as a transaction platform, it is free and is available for use by all users with an account on your Reach Portal. The Mobile App provides access to the major transaction elements of the ...
    • ARTICLE: Medical Appointment Leave Type Configuration

      Individual Leave Types can now be associated as Medical Appointments, which will allow them to be displayed in the student's medical calendar as a schedule appointment time. System Configurations > Leave Types Either create a new leave type or open ...