Supply Chain Security Roles

This role has read only access to results of business data / analytics.

Business functions: A business user can read reports from analytics.

This role provides the following privileges:

• %DB_IRISLIB:R

• %DB_IRISLOCALDATA:R

• %DB_IRISTEMP:R

• %DB_SC:R

• %DeepSee_Analyzer:U

• %DeepSee_Architect:U

• %DeepSee_ListingGroup:U

• %DeepSee_Portal:U

• %Service_SQL:U

• SC_Data_Model_API:R

• SC_Data_API:RU

This role is for data analysts to generate cubes, KPI, business process.

Business functions: A data analyst builds data cubes, KPIs, and set define business processes.

This role provides the following privileges:

• %DB_SC:RW

• %DeepSee_Analyzer:U

• %DeepSee_AnalyzerEdit:U

• %DeepSee_Architect:U

• %DeepSee_ListingGroup:U

• %DeepSee_Portal:U

• %DeepSee_ReportBuilder:U

• %Service_SQL:U

• SC_Data_Model_API:R

• SC_Data_API:RWU

This role is for interoperability developers.

Business functions: Interoperability developers set up interoperability processes. They may need to write code, import data into SC database, create DTL, BPL, and so on.

This role includes the following privileges:

• %DB_SC:RW

• %Service_SQL:U

• SC_Data_API:RWU

• %DB_IRISLIB:R

• %DB_IRISLOCALDATA:R

• %DB_IRISTEMP:R

• SC_Data_Model_API:R

• SC_Data_API:RWU

• SC_BI_API:RWU

• %Ens_Alerts

• %Ens_Code

• %Ens_DTL

• %Ens_DTLTest

• %Ens_Dashboard

• %Ens_EDISchema

• %Ens_EDISchemaAnnotations

• %Ens_ITK

• %Ens_Jobs

• %Ens_LookupTables

• %Ens_MessageContent

• %Ens_MessageDiscard

• %Ens_MessageEditResend

• %Ens_MessageSuspend

• %Ens_MsgBank_MessageEditResend

• %Ens_Portal:U

• %Ens_ProductionConfig

• %Ens_ProductionDocumentation

• %Ens_PubSub

• %Ens_Purge

• %Ens_Queues

• %Ens_RuleLog

• %Ens_Rules

• %Ens_TestingService

• %Ens_ViewFileSystem

• %Ens_WorkflowConfig

This role includes that of the Data Analyst but allow permits modifying and creating data objects.

Business functions: Data architects customize SC database schemas, create custom objects, import data into SC database, and create cubes, analytics, and KPIs.

This role includes the following privileges:

• %DB_SC:RW

• %Service_SQL:U

• SC_Data_Model_API:RWU

• SC_Data_API:RWU

• %DB_IRISLIB:R

• %DB_IRISLOCALDATA:R

• %DB_IRISTEMP:R

• %DeepSee_Analyzer:U

• %DeepSee_AnalyzerEdit:U

• %DeepSee_Architect:U

• %DeepSee_ListingGroup:U

• %DeepSee_Portal:U

• %DeepSee_ReportBuilder:U

• SC_Data_API:RWU

• SC_BI_API:RWU

The role for developer of applications.

Business functions: Developer develops entire supply chain system end to end. They cover the combined functions of SC_Data_Architect, SC_InterOp_Dev

This role includes all the privileges of SC_Data_Architect and all the privileges of SC_InterOp_Dev.

Administrator of Supply Chain Orchestrator. Business functions: System administrators manages users, manage scheduled tasks, and manage the backup and mirroring of the servers.

This role includes the following privileges:

• %DB_IRISLIB:R

• %DB_IRISLOCALDATA:R

• %DB_IRISTEMP:R

• %DB_SC:R

This role also grants the role %Manager.

This is for 3rd party software to access API (read only).

Business functions: It is for software read only access to data. Not intended to be granted to human users.

This role includes the following privileges:

• %DB_SC:R

• %Service_SQL:U

• SC_BI_API:U

• SC_Data_Model_API:R

• SC_Data_API:U

• %DB_IRISLIB:R

• %DB_IRISLOCALDATA:R

• %DB_IRISTEMP:R

This is for 3rd party software to access API (CRUD).

Business functions: It is for software access to database. Not intended to be granted to human users.

This role includes the following privileges:

• %DB_SC:RW

• %Service_SQL:U

• SC_BI_API:U

• SC_Data_Model_API:R

• SC_Data_API:RWU

• %DB_IRISLIB:R

• %DB_IRISLOCALDATA:R

• %DB_IRISTEMP:RW

This is for 3rd party software to customize data model (e.g. a data mapper).

Business functions: It is for software access to data model changes. Example: am automated data mapper. Not intended to be granted to human users.

This role includes the following privileges:

• %Service_SQL:U

• SC_Data_Model_API:RWU

• SC_Data_API:RWU

• %DB_IRISLIB:R

• %DB_IRISLOCALDATA:R

• %DB_IRISTEMP:RW

• %DB_SC:RW

This is for 3rd party software to query analytics result.

Business functions: It is for software read only access to analytics result. Example: a dashboard. Not intended to be granted to human users.

This role includes the following privileges:

• DB_IRISLIB:R

• %DB_IRISLOCALDATA:R

• %DB_IRISTEMP:RW

• %DB_SC:RW

• %Development:U

• %DocDB_Admin:U

• %Service_Console:U

• %Service_DocDB:U

• %Service_Native:U

• %Service_Object:U

• %Service_SQL:U

• %Service_Telnet:U

• %Service_Terminal:U

• %Service_WebGateway:U

• %System_CallOut:U