This article provides an overview of evidence access control and the access list in Evidence.com.
Procedures for using the access list are linked below:
- Adding Users to the Inside My Agency Access List
- Modifying Inside My Agency Access List Information
- Removing Users from the Inside My Agency Access List
- Manually Restricting Evidence Inside My Agency
- Removing Evidence Restriction
- Download a PDF with the overview and all the procedures (updated August 16, 2017)
- Sharing Outside your Agency
Access Control Overview Video
What is Access List?
Access List is the new workflow for controlling access to evidence in Evidence.com. It allows you to grant access to users, as well as restrict access to only users on the access list. Each piece of evidence has its own access list. So, you can individually manage access and restrict evidence as needed.
The initial release only supports adding users to an access list and is only available for evidence. Future releases will support adding Groups and apply the access list workflow to cases.
Default Access to Evidence
Default access is based on the user's assigned role. Additionally, any user added to the evidence access list is also granted access. For evidence that is not restricted, the access list is additive to initial role-based access. So, both role-based users and access list users are granted access to evidence. For restricted evidence, only users on the access list are granted access the evidence.
Access List Information
You can get a snapshot view of the number of users on the access list for an evidence file on the Evidence Detail page. This view also shows if the evidence is restricted.
A detailed view of user access can be found by clicking Inside My Agency to go to the Manage Access page for the evidence. The Manage Access page is used to add and remove users from the evidence access list and to manually restrict the evidence.
The upper portion of the Manage Access page shows if the evidence is restricted, the number of users on the access list, and the number of users that can view the evidence due to the permission settings for their assigned role. The upper portion of the page also includes the link to the evidence page, allowing users to easily copy the link so it can be pasted into reports, documents, and other applications. Note that anyone using the link must still sign into their Evidence.com account and be on the access list or have permission to view the evidence.
The image below is the same Manage Access page when the evidence is restricted, showing users assigned to a Role with View Any permission no longer have access. Only users on the access list or that are assigned to a role with Access Restricted Evidence permission have access to the evidence.
The lower portion of the Manage Access page shows the users on the access list for the evidence. The list shows the user’s name, badge ID, evidence access duration, access level permission, and when the user was added to the list. If the evidence is restricted, only the users on the list can view the evidence.
Role & Permission Changes for Access Control
The evidence access control update renames the Evidence Management Pro License permission from Restricted Category Access to Access Restricted Evidence. The new name and updated description, shown below, clarify the actions allowed by users assigned to roles with this permission.
- Access Restricted Evidence: This permission setting allows users to access all restricted evidence inside your agency without being on the evidence's Access List. This permission requires that Evidence Management View be allowed for the associated role.
Sharing Evidence Outside Your Agency
Note that sharing outside your agency can be accomplished using the old bulk sharing process described here, with a few small changes. The following video shows and overview of sharing outside your agency.