Access to Budget Nodes: General Information
In MYOB Advanced, organizations implement general access restrictions by assigning roles to users of the system and controlling access to the resources by assigning the roles the needed access rights. The roles assigned to users then allow them to access the needed resources to perform the specific tasks required for their jobs. If needed, restriction groups can be used to meet additional security requirements.
This approach can be especially useful with budget articles. If a role allows a user to view or edit GL budget articles, the user can view all the articles, including those that might be sensitive. By using restriction groups, you can limit the visibility of sensitive budget articles so that only particular users can see and work with these articles.
Learning Objectives
In this chapter, you will learn how to configure access rights for multiple users by creating restriction groups.
Applicable Scenarios
You assign access to budget articles for multiple user roles if you want users belonging to particular roles to have access to particular budget nodes, and all other users not to have this access.
Management of the Visibility of GL Budget Articles by User
In MYOB Advanced, you can configure restriction groups with direct and inverse restrictions. Groups with direct restriction (types A and B) make the entities included in the group visible to users who are included in the group; other users cannot view these entities. Groups in inverse restrictions (types A Inverse and B Inverse) hide the entities included in the group from users who are also included in the group; users who are not assigned to this group can view and use these entities. For details on the types of restriction groups, see Types of Restriction Groups.
You can configure a direct restriction group that will limit the visibility of GL budget articles (leaf articles or nodes at any level) for users. As a result, the users included in the group will be able to see the budget articles (and these articles' subarticles, if there are any).
For example, suppose that the Wages budget article should be available to only the chief financial officer of your organization. To configure the visibility of this budget article, you need to do the following on the GL Budget Access (GL105030) form:
- You create a restriction group (for example, Group for Wages Budget Article) with direct restriction.
- You add to the group the user account of the chief financial officer.
- You add to the group the Wages budget article.
For more details about restriction groups, see Restriction Groups in MYOB Advanced.
If you need to apply a restriction group to an existing budget, you should do the following:
- On the Budgets (GL302010) form, select the needed budget.
- On the form toolbar, click Manage Budget.
- In the Manage Budget dialog box, select Convert Budget Using Current Budget Configuration in the Select Action box, and click OK.
- Confirm the action and click Save to save the budget.
Workflow of Configuring Access to Budget Nodes
The following diagram illustrates how you can assign access to nodes of a budget by configuring direct restriction groups of type A, which means that the budget nodes included in these groups will be visible to the users included in these groups.
In the diagram, the budget node was initially visible to all users assigned to the Sales Manager, Purchasing Manager, and Financial Supervisor roles. By setting up a restriction group with direct restriction, you make the Sales node of the budget tree visible to the users with the Sales Manager role, and the subnodes of the Purchases nodes visible to users with the Purchasing Manager role. The Financial Supervisor has been included in both groups, so users with this role can access all nodes of the budget tree.
