How to Use Access Management in Resto iQ

Access Management is accessible via the left side navigation pane. It'll be one of the last few options of the list.

Access Management in Resto iQ serves as the hub for assigning permissions and defining roles for managers, associates, and staff. It enables administrators to manage access rights effectively, ensuring that sensitive information remains accessible only to authorized personnel.

 

Organization Structure in Resto iQ

 

 

Your organization may have multiple brands and locations setup in Resto iQ. These are crucial because Roles can be assigned to different brands and its locations.

 

Role Assignment in Resto iQ

Brand and location access is designated for each role. In addition to access, the ability to utilize specific features of Resto iQ is configured at the role level. These roles are subsequently assigned to users.

 

 

User Creation in Resto iQ



When creating users in Resto iQ, it is required to assign a previously created role to them. The role assigned to the user will define their access to brands and location as well as the features they are permitted to use.

Editing user access should be applied to the Role, as modifying the role will effectively modify the permissions of the user.

 

In case of identical roles, but varying permissions (brand/location/Resto iQ feature), adding new roles is available for the administrators to uniquely differentiate users from one another.

 

Note: It is not possible to modify a user's permissions during the initial creation or setup process. You can only edit the roles, which will then be assigned to the users. If special permissions need to be given to a particular user, then you must create a new role with these specific permissions.

 

How to Access

On the right-hand side, follow these steps

  1. Click Settings
  2. Click Access Management
  3. Identify what you wish to perform

    - Click Role if you want to view all currently configured roles. These roles are then going to be assigned to the users of Resto iQ under your organization.
    - Click User if you want to view all currently registered users under your organization. Updating/editing existing users is performed here.

    Example:
    - Juan and Juana both have the "Manager" role with access to permission A, B, C, D.
    - Juan edited his role (the "Manager" role) to remove permission A and B.
    - Juana's permissions is also updated, and will no longer have permission to A and B, even if Juan only wanted to update his permission.

    Legend:
    - Full Access:
    All permissions are enabled.

    - Modified Access:
    Whether a few or nearly all permissions are disabled, the status will be "modified access".

    - No Access:
    No access at all.



  4. Actions for Roles

    Here are the available actions when editing "Roles":
    - Modify: update existing roles
    - Assign: assign this role to an existing user
    - Delete: completely remove this role from the organization's Resto iQ account (might affect users with this role, best to check first).



  5. Actions for Users


    Here are the available actions when editing "Users":
    - Reinvite: resend an email invitation to the user's email address. To check if the address is correct, click "View". This is done when a user has lost the email invite, or when the invitation has expired.
    - View: check the current user and its access/permissions.
    - Modify: update existing user

    To edit, the user must click the drop-down arrows on the right side to expand and tick/untick the permissions.


    Sample for Purchasing & Inventory:

    Administrators or authorized personnel may tick/untick the checkboxes to assign/unassign permissions to the user.


    - Delete: completely remove this user from the organization's Resto iQ account.




  6. Brand Permissions

    For accounts/organizations with multiple brands configured, here's what you can expect when viewing the "Brand Permissions" of a certain user.

    You can see that for this sample user only has access to Brand 1, 3, 4, and 6. Perhaps this is an Area Manager, monitoring these brands at specified locations only. To view the location, click the three vertical dot button (found under "Actions" column).



  7. When done modifying, click Save. This is commonly found on the corners of whichever window you're working on. Upon saving, you may exit the window, and the changes will be applied real-time.



 

 

Features

Access Management has multiple features. Namely: Filtering, Modifying Assigning & Deleting Permissions, and Reinviting Users.

 

Assigned administrators can fine-tune the access of the user by individually enabling checkboxes under each module. In this example, the user role "Marketing viewer" may only view business management modules, but not create or modify.

 

 

Access Permissions

Important: When modifying users (not roles), you are only limited to modifying the role of that particular user. All dropdown menus below only display each module as to which are permitted, and which aren't. To modify and fine-tune each module, you must need to modify the Role by going to Access Management > Role > Modify.

 

 

Brand Permissions

Brand Permissions, similar to location permissions, is the module that administrators modify to assign a particular brand to a user. This is useful for accounts/organizations with multiple brands.

 

 

Location Permissions

Location Permissions, similar to brand permissions, is the module that administrators modify to assign a particular location (or all locations of a brand) to a user.

A practical example could involve an Area Manager for Brand X; the system administrator may pinpoint the specific location for this Area Manager and segregate it from the location of another Area Manager to prevent any confusion or exchange of information between the two areas.