The following hierarchy is present in the Audit Template database:
- Federal Agency (A)
- Federal Sub Agency (SA)
- Federal Sub Agency – Sub Level 1 (SA1)
- Federal Sub Agency – Sub Level 2 (SA2)
- Federal Facility (F)
- Federal Facility – Sub Level 1 (F1)
- Federal Facility – Sub Level 2 (F2)
- Real Property Unique ID (RPUID)
# | Name | Example 1 | Example 2 | Example 3 | Example 4 |
1 | Federal Agency | DOD | DOD | DOD | DOE |
2 | Federal Sub Agency | ARMY | ARMY | ARMY | SC |
3 | Federal Sub Agency - Sub Level 1 | IMCOM | ARMY RESERVE | ARNG | SC |
4 | Federal Sub Agency - Sub Level 2 | READINESS | ARMY RESERVE | ARNG | SC |
5 | Federal Facility | Fort Bragg | 63rd Readiness Division | Washington National Guard | Pacific Northwest National Laboratory |
6 | Federal Facility - Sub Level 1 | Camp Dawson | Albuquerque 2 Wet Site | Richland Readiness Center | Pacific Northwest National Laboratory |
7 | Federal Facility - Sub Level 2 | Camp Dawson | Albuquerque 2 Wet Site | Richland Readiness Center | Pacific Northwest National Laboratory |
Every Federal building is assigned a Real Property Unique ID (RPUID), which uniquely identifies the Federal building. Audit Template user accounts may be granted permissions to view, edit, delete and/or submit audit reports for specific Federal buildings using the Role-based Access Control (RBAC) system. The permissions are granted by administrators who define and manage access control rules.
Permissions
A "permission" is an approval of a mode of access to an audit report in the Audit Template tool. The following permissions may be approved:
| # | Name | Description |
|---|---|---|
| 1 | View | Audit report is listed in "Audit Template Buildings" screen; Audit report can be downloaded in all supported formats. |
| 2 | Edit | Un-submitted audit report can be edited. |
| 3 | Delete | Audit report can be deleted |
| 4 | Convert | Audit report can be converted from Audit Template to Asset Score. |
| 5 | Submit | Un-submitted audit report can be submitted. |
| 6 | Reopen | Submitted audit report can be reopened (e.g., for editing and resubmission). |
Adding Access Control Rules
Role based access control rules may be added to assign permissions to user accounts to access subsets of buildings that are matched by the rule. Property administrators may assign permissions to other Audit Template users who have been added as contacts (see Manage > My Contacts).
To add rules:
- Select Federal > Manage Access Control Rules from the top menu bar.
- Select the green ‘Add a Rule’ button.
- Enter a name for the rule.
- Assign access permissions (see chart above for definitions).
- Create a rule (see symbols below and example rules below).
- Add users to apply the rule to – select the blue Add User button and select available user contacts from the drop-down list.
- Select the green "Save" button.
Rule symbols
The following symbols have been associated with organizational hierarchy fields and may be used when creating rules.
| # | Symbol | Name |
|---|---|---|
| 1 | RPUID | Real Property Unique ID (RPUID) |
| 2 | A | Federal Agency |
| 3 | SA | Federal Sub Agency |
| 4 | SA1 | Federal Sub Agency - Sub Level 1 |
| 5 | SA2 | Federal Sub Agency - Sub Level 2 |
| 6 | F | Federal Facility |
| 7 | F1 | Federal Facility - Sub Level 1 |
Example Rules
| # | Name | Rule | View | Edit | Delete | Convert | Submit | Reopen |
|---|---|---|---|---|---|---|---|---|
| 1 | Energy Manager | F = "Fort Bragg" | Y | Y | Y | Y | Y | Y |
| 2 | Sub Agency Head | SA2 = "READINESS" | Y | Y | Y | Y | Y | Y |
| 3 | Agency Level | SA1 = "IMCOM" | Y | Y | Y | Y | Y | Y |
| 4 | Contractor | RPUID IN ("10001", "10002", "10003") | Y | Y | N | N | Y | N |
The rules listed define access permissions for different types of users in the Audit Template system based on their roles and specific conditions associated with their roles. Here is an interpretation of each rule:
Facility Energy Manager (for Fort Bragg)
- Condition: User is associated with "Fort Bragg."
- Permissions: Allowed to view, edit, delete, convert, submit, and reopen audit reports related to Fort Bragg.
Sub Agency Level2 Head (for READINESS)
- Condition: User is associated with the sub-agency "READINESS."
- Permissions: Allowed to view, edit, delete, convert, submit, and reopen audit reports related to READINESS.
Sub Agency Level1 Head (for IMCOM)
- Condition: User is associated with the sub-agency "IMCOM."
- Permissions: Allowed to view, edit, delete, convert, submit, and reopen audit reports related to IMCOM.
Contractor (for 10001, 10002, 10003)
- Condition: User is associated with one of the Real Property Unique IDs (RPUID) "10001", "10002", "10003."
- Permissions: Allowed to view and edit, but not delete, convert, or reopen audit reports. However, they can submit reports associated with these RPUIDs.