Access to security-sensitive data
Some parts of the application deal with security-sensitive data. By being more security aware Planon has stepped up to its responsibility of providing customers the possibility to tighten data security.
Data security is beyond the scope of functional application management, the domain of the Planon application manager. Planon recommends to create a dedicated system administrator profile for someone who is in charge of system security and responsible for all changes that affect security (such as unauthorized access).
What kind of data/access are we talking about?
In general, this affects areas where you configure or can access:
• Technical configuration
• Sensitive information (folders, passwords, URLs, and more)
A system administrator should be assigned the responsibility of managing:
• ProCenter Modules
◦ Web content
◦ External content
◦ Environment Management gadget
◦ Cloud exo gadget
• System settings
◦ Connect for Outlook
◦ External data storage
◦ File locations
◦ General
◦ Outgoing email
◦ Reporting
◦ Security
◦ Trusted services
◦ Web application
• System information
◦ User sessions
◦ User groups
◦ Authorization
• Planon Live - Workplace engagement app
◦ External links
These are areas to which only the system administrator and not the application manager should have access.