A Guide to User Security in Mazévo

Learn more about how to manage and control user access in Mazévo

Definitions

  • User - someone who can access the Mazévo system
  • Role - A role is a specified set of system functions that a user can access
  • User Security Level – Determines which rooms a user has access to request or reserve 

Understanding Roles

A role allows access to a collection of features and functions in the system. In order for someone to access the system they must have access to a minimum of one role.  Below are Mazévo security roles

Event Viewer

Provides a user the ability to view events in the mobile app or the web app. The user will be limited to viewing events they are associated with, such as events they have requested.

Requester

Provides a user the ability to create and manage their own requests from the mobile app or the web app, limited to the buildings and room security levels granted to their account. These requests must be processed and confirmed by a user with the event planning role (see below).

Book Space

Provides a user the ability to create and manage their own reservations from the mobile app. Please note that events booked with this role require no approval and are confirmed once submitted by the user. The use of this role is limited to the buildings and room security levels granted to the users account.

Event Planning

Provides a user the ability to create and manage events for all users, create and manage approvals, process event requests and create and manage organizations and  associated users to organizations. They can also create users with event viewer role only. They can't otherwise modify or delete users in the system.

Event Reporting Publisher

Provides a user the ability to run and optionally publish a report.  Publishing a report allows a report to be viewed by a user with view access to reports.  

Event Reporting Viewer

Provides a user the ability to view published reports and mark reports as their favorites.  The user will not be able to change filtering data.

Event Analytics

Provides ability access to the analytics process.

Service Reviewer

Provides a user the ability to view a list of events and associated services and mark those events as reviewed.

Service Manager

Provides a user the ability to define service staff members and assign that staff to provide services to an event.

Service Worker

Provides a user the ability to view a list of events that have been assigned to them to provide or perform service. They can also indicate if the service they are providing is in progress or completed.

Oversight (Approver)

View and manage event oversight requests.  View event details associated to each request for oversight.

Global Administrator

Provides ability to manage access to all licensed features and roles and update account information.

User Administrator

Provides ability to create and maintain users and their security access to the system.

Facility Administrator

Provides ability to create and maintain building, room and room type definitions.

Service Administrator

Provides ability to create and maintain service provider, resource and resource grouping definitions.

Billing Administrator

Provides ability to create and maintain pricing plan, tax and service charge definitions, as well as, manage pricing on rooms and resources.

Event Administrator

Provides ability to maintain status, event type and organization type definitions.

Room Sign Administrator

Provides ability to setup a room sign, including associating the sign to a specific room.

Limit user access to specific rooms and buildings. 

A user can be restricted to requesting specific rooms as well as rooms in specified buildings. This applies to users that have either the requester or book space role and initiate a request from the Mazévo mobile app. 

Mazevo offers 4 levels of room access as in the image below.

Screen Shot 2019-05-08 at 8.41.26 PM

To use security levels you must first set one of the 4 security levels for a room. If no security level is chosen Standard will be the default.

If the user has a standard security level they will only be able to book rooms that have a security level of standard. Any rooms that have a higher level of security such as Low, Medium or High will be unavailable to the user to request.

Selecting the building tab on the user record will allow you to specify which buildings a user may request.

Limit event planner access to specific rooms and buildings

The event planner role is intended to book any room configured in the system from the web interface.

In specific limited cases you may wish to limit the spaces an event planner can create new events. The following rules apply

  1. If the event planner is not a global admin they can be restricted to creating new events in specified buildings. 
  2. If the event planner is not a global administrator they can be restricted to creating new events in rooms with a equal or lower security level then they have. 

**Please note that event planners can edit any event in the system even if it is in a room or a building that they do not have access to create new events in. 

Limit service provider access to specific rooms and buildings

  • Service Reviewers can review any event in the system regardless of building or room
  • Service Managers can assign staff to any event in the system regardless of building or room
  • Service workers can only view events that have been assigned to them by a service manager

Additional Information

How to define types of users