What is Role-Based Access Control?
Role-Based Access Control is a method of restricting system access by assigning users to defined roles. RBAC allows you to restrict the user access to only what is necessary to perform their duties.
This is important in securing not only the organization’s sensitive information but also in limiting the specific tasks that users are authorized to perform.
What can I do with RBAC?
Here are some examples of what you can do with RBAC in Sprout Payroll:
-
Assign a specific payroll run type of a pay group to a payroll processor
-
Create a role that limits the user to view-only access of the employee profile
-
Modify permissions that applies to all users assigned to a specific role
Access and permissions are set for each of the following modules:
-
Payroll Runs
-
Reports
-
Setup
-
Employees
-
Users
RBAC comes with 9 preset roles based on standard roles and permissions that are present in most companies today.
-
Super Admin - manages all modules in Sprout Payroll. This role cannot be edited or deleted.
-
Payroll Admin - manages most modules in Sprout Payroll, except the Employee Profiles
-
Payroll Processor - manages payroll modules and reports
-
Adjustment Uploader - has access to adjustment-related modules and reports only
-
Reviewer - reviews and uploads YTD to all Payroll Run Types and can download to Payroll Register, Payroll Instructions, and Bank DAT File.
-
Approver - approves and uploads YTD to all Payroll Run Types and to download most Payroll Reports, except Print and Email Payslips
-
HR (201 only) - has View and Edit access to the Employee Module
-
Accountant - has access to reports
-
Employee - most basic access granted to all newly created accounts. This role cannot be edited or deleted.
Comments
0 comments
Article is closed for comments.