Security in Mazévo, managed by an administrator, is relatively easy to set up and manage. New user accounts are assigned one or more roles, with each role providing access to different functions of the system.
Definitions
- User - Someone who can access the Mazévo system
- Role - A specific set of system functions that a user can access
Understanding Roles
A role allows access to a collection of features and functions in the system. For someone to access the system, they must have access to at least one role. Below are the roles that Mazévo users can have:
Requester - View Events
It allows a user to view events on mobile or web apps. The user is limited to viewing events with which they are primary, secondary, or billing contact. A system setting allows a requester to view events for any organization they are defined as a contact. You can optionally specify a security policy. This policy determines which rooms are displayed in the Event Book. If no policy is specified, the Event Book will not be available as a selection for the user.
Requester - Create Events
It allows users to create and manage their own requests from mobile or web apps. The requester is assigned a security policy that limits the buildings, sets the room security levels, and sets the timeframes for making requests. A user with the event planning role must process and confirm these requests.
Event Planner - Create Events
It allows a user to create and manage events for all users, create and manage approvals, process event requests, and create and manage organizations and associated contacts.
Event Planner - View Events
It allows a user to view all events in the system from the web app. The following tools are available for this role: Find Events, Event Book, and Event Calendar.
Event Reporting Publisher
It gives a user the ability to run and optionally publish a report. Publishing a report allows a report to be viewed by a user with view access to reports. The reports available for this role are the Event List, the Daily Operations Report, the Service Order Report, Room Cards, and the Resource Usage Report.
Event Reporting Viewer
It allows users to view published reports and mark them as favorites. The user cannot change filtering data.
Event Analytics
Gives a user access to the analytic reporting tools: Analytics, Revenue Analytics, and Ratings.
Invoicing
It allows users to create and print invoices, deposits, and payments.
Service Reviewer
It allows a user to view a list of events and associated services and mark those events as reviewed.
Service Manager
It allows users to define service staff members and provide services to a specific event.
Service Worker
It allows a user to view a list of events to which they have been assigned to provide or perform a service. They can also indicate if their service is in progress or completed.
Oversight (Approver)
It gives a user the ability to view and manage event oversight requests. They can view the event details associated with each request.
Global Administrator
It allows users to manage access to all licensed features and roles and update account information.
User Administrator
It allows users to create and maintain users and set or modify their security access to the system.
Facility Administrator
It allows users to create and maintain buildings, rooms, and room types.
Service Administrator
It allows users to create and maintain service providers, resources, and resource groupings.
Billing Administrator
It allows users to create and maintain pricing plans, taxes, and service charges and manage pricing on rooms and resources.
Event Administrator
It allows users to maintain statuses, event types, and organization types.
Calendar Manager
It allows a user to create calendar filters and properties and create and edit calendar properties for events.
Room Sign Administrator
It allows a user to set up a room sign, including associating the sign with a specific room.
Academic Administrator
It allows users to set up academic statuses and manage all academic settings.
Academic Manager
Users can create terms and import course data from an external system.
Academic Planner
It gives a user the ability to view and manage course events.
Limiting Requester Access
A requester is assigned a security policy that sets the following limits for requests:
- Buildings. A list of buildings that the requester can use for requesting.
- Timeframes. The boundaries for making and editing requests. This sets how close to the current date and how far into the future requests can be made or edited.
Limiting Event Planner Access to Specific Buildings and Rooms
The event planner role allows users to book any room in the system. However, sometimes, you may limit the spaces where an event planner can create events. If so, the following rule(s) apply:
- If the event planner is not a global administrator, they can be restricted to creating events in specific buildings or rooms tied to security tags.
Please note: Event planners can edit any event in the system. This includes events in rooms or buildings where they are not authorized to create events. There is an internal setting that can be set by Mazévo that limits an event planner to editing only events in the buildings they have access to. Please contact Mazévo support for additional information.
Understanding Service Provider Access to Specific Rooms and Buildings
The following rules apply to service providers and room/building access:
- Service reviewers can review any event in the system regardless of building or room.
- Service managers can assign staff to any event in the system regardless of building or room.
- Service workers can view events that have been assigned to them by a service manager.