No ACL setup yet! Denying access to everyone.

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

public:gorev:restrictedaccess [2019/02/20 08:28] (current)
bgriffin created
Line 1: Line 1:
 +====== GoRev Administrative Setting up Restricted Access ======
 +Welcome to the GoRev Administrative Setting up Restricted Access Tutorial. This will guide you through the process of setting up a new location, utilizing the custom location during patient registration,​ setting up a custom user with permissions restricted to this new location, and the ability to remove accounts from access.
 +
 +This type of setup can be useful to grant outside entities access to their specific patient accounts. ​   It is your responsibility to access to patient information utilizing this method is strictly governed (make sure you have HIPAA controls in place and staff is appropriately trained).
 +
 +====== 1. Setting up a new location ======
 +
 +
 +Setup a new location by utilizing the locations guide [[public:​gorev:​locations|here]]. ​  You will assign this custom location in the next step to any user you wish to have restricted access only to patients who are assigned this new location. ​ For this test setup we have created a location titled "Test WorkComp Location."​
 +
 +====== 2. Utilizing the new location ======
 +
 +The new location will immediately be available for use during registration or in patient overview. ​ During registration,​ you can select this new location on the second step as shown below.
 +
 +
 +{{:​public:​gorev:​testwcomplocation.png?​600|}}
 +
 +
 +In patient overview you can change the location as well.  This is where you could remove access to a specific account by changing the location to one the user does not have access to.
 +
 +{{:​public:​gorev:​ptoverviewlocation.png?​600|}}
 +
 +====== 3. Setting up a custom user account ======
 +
 +First go to Admin --> Click on Users --> The below form will appear ​
 +
 +{{:​public:​gorev:​newuserbg.png?​600|}}
 +
 +Click New User and setup as you would any normal user.  Be sure to assign the appropriate permission level this outside entity will need to utilize. ​ For example, if they only need to see information and not update it we would suggest utilizing a Read Only permission set.
 +
 +{{:​public:​gorev:​newuserbg2.png?​600|}}
 +
 +(THIS PART IS ESSENTIAL) Open the user back up and make sure the location access ONLY has the new location you created. ​ It is this step that restricts a specific user to seeing only patients who have been assigned a specific location for access. ​ If the user is to have access to multiple GoRev units you will need to make sure this location restriction is set on each.
 +
 +{{:​public:​gorev:​newuserbg3.png?​600|}}
 +
 +Once all of the above is done, any user setup with restricted location access will only be able to see patients who have had that location assigned. ​   They will not be able to instant search, advanced search, or find any other patient data within the system.
 +
 +
  
QR Code
QR Code public:gorev:restrictedaccess (generated for current page)