I would love to be an early adopter for the Tasks/Roles EAP. What does involvement entail though? I am starting a huge infrastructure project and have to be wary of time away from it
Hi all! This year we will release task descriptions for all tasks within a role, and when looking at any task, you'll be able to see in which other roles that same task can be enabled. Developers are currently researching how we can provide more information about the inherent access contained in a role, which is not listed by any of the tasks. I'm leaving the cloned role reference idea "Under Consideration" since we don't know yet what that work will look like or what the timeline will be. I agree that it is an important problem to address.
We are entering a Roles & Tasks early adopter program (EAP) this week - May 24, 2023! Please email me if you are interested to learn more and/or would like to join the EAP for 1) early access to the new role management experience and 2) an opportunity to directly influence the path of development in this area: jessica dot walters at blackbaud dot com. (Note: joining this EAP does not obligate you to participate in others - they are managed individually and separately from each other.)
We're in the midst of implementation and security and student privacy is really important to us. I want to make sure we get off to a good start with roles and tasks but it's so hard to figure out which roles to clone and where certain tasks belong - especially for someone who is new to core already. Hoping this gets resolved soon as it looks like it's been under consideration for a long time!
I totally agree - this is a huge security concern for us, and baffling why it's not an obvious need for documentation. The permissions structure is seemingly unknowable - and with no way to list out roles and tasks unless you copy and paste. I'm trying to clean up former setups where since it is almost impossible to understand, folks are given way more permissions than they need. This should be a huge priority.
When I contacted support about a specific task/functionality, they were quickly able to tell me which tasks needed to be checked for it to work. I just want access to a "roadmap" of sorts so I can figure it out without the trial and error method.
For a company that has had already been compromised once and is now claiming that they are security conscious, this is something that should be be being worked on not "under consideration!" A permissions system that is so complicated that people cannot use it properly is definitely not secure!
It baffles me that something like this doesn't exist already. I know you can clone and create new roles, but it's kind of convoluted. It's very hard to pinpoint the exact tasks you need.
Still waiting on this.... we're currently trying to find ways to give department chairs access to the new "Report card grades list" and "Gradebook grades list". These are mush easier to use than Advanced Lists and we wan't more people to have the ability to VIEW data without the ability to EDIT the data.
I second this as well. It is very frustrating when support (and I dont fault them!) tells you to play around with the tasks to see what works. I don't have the time to play around - having to click/unclick every task box is such old technology - it is disheartening to see that Blackbaud has not moved with the times and have a better interface for this.
- Certain roles need to not be attached to other roles. The person who is responsible for sending transcripts should never have the ability to change grades. Unfortunately, there is no way to separate these two roles
- When trying to figure out what has changed when adding/removing tasks from a cloned role it is very frustrating that sometimes these changes don't seem to take for hours.
- Would like to see a list of, if you want access to Academics: Scheduling -> Requests and Schedules: [Course request setup] tab, you need xyz tasks under cloned x role.
As we are implementing Blackbaud this summer, our biggest challenge has been giving user access to the functions and reporting abilities they need without giving them access to making too many changes. It seems as though you are either nothing or you are a manager who can change everything. When we try to clone roles and strip most of the true management functions out, we are guessing as to which tasks do what we want and which do not. It's been very hit or miss.
How is this still not a thing after 2+ years‽ You would think that this would be something that would be put out there from the beginning. It makes it really difficult for new implementations to get set up when there isn't proper documentation about what everything does.
Janet - specific instance that I'm trying to fix today: It's Enrollment Season - and our Division Heads would like a list of the names of students/candidates in their division and the status of their contract. I email out the Contract Summary Totals report every Friday - but they would like names - and the ability to look any day they wish. I have built lists for them viewable in onBoard > Lists > Contracts.
I would like to clone the Admissions Staff role to allow the Division Heads access to the Lists - but I can't figure out which of the Admissions Staff Tasks is the one that allows them to view those lists. I don't want my Division Heads to also be Admissions Staff. I just want them to be able to run these lists when they need them.
It would be helpful if we could clone access/roles so if in the event we hire someone with the same role or a replacement, we could click a button to copy the roles/access over.
Some other access requests I've received with no knowledge as to which role applies that:
Access to printing reports and school forms
See the teacher and class information
View student progress
See teacher syllabus' in academic groups, and other details
We need to provide certain users access to edit contract cards via people finder. These individuals should also have access to view admin only custom fields. We don't want them to have access to run reports, lists, etc.
I'd like to be able to give someone the ability to update contact information - name, address, email, phone number without having to give them platform manager role.
I'd also like to be able to give someone the ability to generate user names in onBoard without having to have the Admissions Manager role.
I agree that it would be nice if there was something more like EE, FE and RE where we could build our own user groups - picking and choosing which functions each group could have.
It's very confusing when you know what you would like someone to be able to do but you can't figure out which role to give them.
Attachments Open full size
I would love to be an early adopter for the Tasks/Roles EAP. What does involvement entail though? I am starting a huge infrastructure project and have to be wary of time away from it
Attachments Open full size
@jessica walters I would love to be part of the Roles EAP. Thank you!
jmreardon@savcds.org
Attachments Open full size
Hi all! This year we will release task descriptions for all tasks within a role, and when looking at any task, you'll be able to see in which other roles that same task can be enabled. Developers are currently researching how we can provide more information about the inherent access contained in a role, which is not listed by any of the tasks. I'm leaving the cloned role reference idea "Under Consideration" since we don't know yet what that work will look like or what the timeline will be. I agree that it is an important problem to address.
We are entering a Roles & Tasks early adopter program (EAP) this week - May 24, 2023! Please email me if you are interested to learn more and/or would like to join the EAP for 1) early access to the new role management experience and 2) an opportunity to directly influence the path of development in this area: jessica dot walters at blackbaud dot com. (Note: joining this EAP does not obligate you to participate in others - they are managed individually and separately from each other.)
Attachments Open full size
We're in the midst of implementation and security and student privacy is really important to us. I want to make sure we get off to a good start with roles and tasks but it's so hard to figure out which roles to clone and where certain tasks belong - especially for someone who is new to core already. Hoping this gets resolved soon as it looks like it's been under consideration for a long time!
Attachments Open full size
I totally agree - this is a huge security concern for us, and baffling why it's not an obvious need for documentation. The permissions structure is seemingly unknowable - and with no way to list out roles and tasks unless you copy and paste. I'm trying to clean up former setups where since it is almost impossible to understand, folks are given way more permissions than they need. This should be a huge priority.
Attachments Open full size
When I contacted support about a specific task/functionality, they were quickly able to tell me which tasks needed to be checked for it to work. I just want access to a "roadmap" of sorts so I can figure it out without the trial and error method.
Attachments Open full size
For a company that has had already been compromised once and is now claiming that they are security conscious, this is something that should be be being worked on not "under consideration!" A permissions system that is so complicated that people cannot use it properly is definitely not secure!
Attachments Open full size
It baffles me that something like this doesn't exist already. I know you can clone and create new roles, but it's kind of convoluted. It's very hard to pinpoint the exact tasks you need.
Attachments Open full size
Still waiting on this.... we're currently trying to find ways to give department chairs access to the new "Report card grades list" and "Gradebook grades list". These are mush easier to use than Advanced Lists and we wan't more people to have the ability to VIEW data without the ability to EDIT the data.
Attachments Open full size
I second this as well. It is very frustrating when support (and I dont fault them!) tells you to play around with the tasks to see what works. I don't have the time to play around - having to click/unclick every task box is such old technology - it is disheartening to see that Blackbaud has not moved with the times and have a better interface for this.
Attachments Open full size
- Certain roles need to not be attached to other roles. The person who is responsible for sending transcripts should never have the ability to change grades. Unfortunately, there is no way to separate these two roles
- When trying to figure out what has changed when adding/removing tasks from a cloned role it is very frustrating that sometimes these changes don't seem to take for hours.
- Would like to see a list of, if you want access to Academics: Scheduling -> Requests and Schedules: [Course request setup] tab, you need xyz tasks under cloned x role.
Attachments Open full size
This would be VERY Helpful!
Attachments Open full size
As we are implementing Blackbaud this summer, our biggest challenge has been giving user access to the functions and reporting abilities they need without giving them access to making too many changes. It seems as though you are either nothing or you are a manager who can change everything. When we try to clone roles and strip most of the true management functions out, we are guessing as to which tasks do what we want and which do not. It's been very hit or miss.
Attachments Open full size
This would be very helpful especially for people who have overlapping roles.
Attachments Open full size
How is this still not a thing after 2+ years‽ You would think that this would be something that would be put out there from the beginning. It makes it really difficult for new implementations to get set up when there isn't proper documentation about what everything does.
Attachments Open full size
Janet - specific instance that I'm trying to fix today: It's Enrollment Season - and our Division Heads would like a list of the names of students/candidates in their division and the status of their contract. I email out the Contract Summary Totals report every Friday - but they would like names - and the ability to look any day they wish. I have built lists for them viewable in onBoard > Lists > Contracts.
I would like to clone the Admissions Staff role to allow the Division Heads access to the Lists - but I can't figure out which of the Admissions Staff Tasks is the one that allows them to view those lists. I don't want my Division Heads to also be Admissions Staff. I just want them to be able to run these lists when they need them.
Attachments Open full size
It would be helpful if we could clone access/roles so if in the event we hire someone with the same role or a replacement, we could click a button to copy the roles/access over.
Some other access requests I've received with no knowledge as to which role applies that:
Access to printing reports and school forms
See the teacher and class information
View student progress
See teacher syllabus' in academic groups, and other details
Manage reminder notifications for forms
Edit medical alerts
Access to contact cards
Attachments Open full size
Hi Janet -
We need to provide certain users access to edit contract cards via people finder. These individuals should also have access to view admin only custom fields. We don't want them to have access to run reports, lists, etc.
Attachments Open full size
I'd like to be able to give someone the ability to update contact information - name, address, email, phone number without having to give them platform manager role.
I'd also like to be able to give someone the ability to generate user names in onBoard without having to have the Admissions Manager role.
I agree that it would be nice if there was something more like EE, FE and RE where we could build our own user groups - picking and choosing which functions each group could have.
It's very confusing when you know what you would like someone to be able to do but you can't figure out which role to give them.
thanks!
Attachments Open full size