Section 3: Security Features
Reminder
Make frequent copies of your data file (BE_HSEAT.mdb).
To help secure configuration and other data entered, HealthySEAT is equipped to provide selective access to various parts of the application. However, the use of the security features within HealthySEAT is entirely optional. Whereas in Version 1 security was enabled by default, new installations of HealthySEAT Version 2 come with security disabled by default. The information presented in this section should assist in deciding whether and how to use the security features available in HealthySEAT. To enable security in HealthySEAT, see Section 4.3.2 of this User’s Manual. Please read this section as well as Section 4.3.2 carefully before enabling security as this will prevent you from inadvertently becoming locked out.
3.1 Permission Levels
There are three permission levels that are fundamental to the security model employed by HealthySEAT. Each level ties directly to one or more of the three main components of HealthySEAT, as represented by the buttons on the Main Menu. Following are the three permission levels, along with the HealthySEAT components to which users of that level have access.
Permission Level |
Has Access To... | ||
Customize for District |
Manage School- Specific Assessments |
Open Reports/Output Menu |
|
Administrator | √ | √ | √ |
Assessor | √ | √ | |
Viewer | √ |
3.2 Security Modes
To provide flexibility to users of HealthySEAT, three security modes are available. These three security modes include:
- Group Accounts (pre-configured)
- Individual User Accounts (recommended)
- No Security (default)
Each of these security modes is described in detail in the following subsections.
3.2.1 Using HealthySEAT with Group Accounts
Using this security mode involves setting up user accounts, and commensurate user levels, for groups of users, though HealthySEAT comes pre-configured with three group accounts. Individual users are provided the login credentials (User Name and Password) for one of the three groups (e.g., Administrator, Assessor, Viewer) to which they belong.
The three group user accounts with which HealthySEAT comes pre-configured are:
User Name | Password | Permission Level |
Admin | admin | Administrator |
Assessor | assessor | Assessor |
Viewer | viewer | Viewer |
If security is enabled and HealthySEAT is used with these pre-configured group accounts, then the password for each should be changed (see Section 4.3.3 of this User’s Manual).
NOTE: HealthySEAT passwords are fully encrypted. Administrator access to HealthySEAT is not possible without the login credentials for the “admin” group account. Thus, it is recommended that the login credentials for the “admin” group account be written down and stored securely.
3.2.2 Using HealthySEAT with Individual Accounts
HealthySEAT is capable of managing individual user accounts for each user. This is the security mode that is recommended, as it provides the highest level of protection. This mode involves setting up user accounts, and commensurate user levels, for each person who accesses HealthySEAT (see Section 4.3.3 of this User’s Manual).
If HealthySEAT is used with individual user accounts, the default group accounts for Administrator, Assessor and Viewer (see Section 3.1) should be removed after the individual user accounts (including at least one with Administrator permission level) are established.
NOTE: HealthySEAT passwords are fully encrypted. Administrator access to HealthySEAT is not possible without the login credentials for at least one user account with permission level of “Administrator.” Thus, it is strongly recommended that the login credentials for at least one user account with permission level of “Administrator” be written down and stored securely.
3.2.3 Using HealthySEAT with No Security
HealthySEAT can be used with all security features disabled. To minimize the barriers to installing and evaluating HealthySEAT, new installations of Version 2 come with this security mode selected by default. In this mode, there is no prompt for User Name or Password when opening the tool. All users are treated as administrators and have full access to all functions within HealthySEAT, including the “Customize for District” menu.
The district is encouraged to consider the value of the HealthySEAT data and the effort put into customizing the district’s assessment program and configuring it properly. Therefore, it is not recommended that HealthySEAT be deployed with security features disabled unless the tool is used on one single computer.
To disable security in HealthySEAT, see Section 4.3.2 of this User’s Manual.