IWeb 5.17.5 User Guide

Access Levels / Permissions

Although this list continually expands, some of the most common access levels and permissions are:

County View
Facility Client
Facility View
Health Promotions Client
IRMS Client
IRMS View
Paper Data Entry
Provider Recruiter

Registry Client
Registry View
School District Client
School Nurse
School Nurse coordinator
School Nurse - Facility Nurse
Vender View

The following examples are permissions that can be granted to the access level to enable or disable certain privileges:

IWeb Core
Block Adverse Reaction
Block Contraindication
Block IWeb Core Access
CDC Communication Access

For a comprehensive list of permissions, see Appendix E: Access Levels and Permissions in the IWeb Administrator User Guide.

Keycloak Roles

With the addition of single sign-on (SSO) and interoperability between STC applications (see STC Application Interoperability), Keycloak roles have been added. Users are granted access to each application individually via access roles in the IWeb application (or ImMTrax for WIR implementations) user management area. There are two types of roles defined in Keycloak: application access roles and user type roles. An access role must be assigned in order to access an application. These roles do not control application behavior. To assign one or more Keycloak roles to a user, see User Management Settings.

SSO Role (Internal)	SSO Role (Displayed)	Description
access_afix	Access AFIX	Role required to access the STC \| SMaRT AFIX application.
access_interop	Access STC \| iQ	Role required to access the STC \| iQ application.
access_iweb	Access IWeb	Role required to access the IWeb application.
access_voms	Access VOMS	Role required to access the VOMS application.
ROLE_access_phc-hub	Access PHC-Hub	Role required to access the PHC-Hub application.

If you have any questions about your access level, permissions, or Keycloak roles, contact your state's system administrator.