User Types
Use Ennov InSight Security Administration to manage Users and Groups, and to assign privileges to them appropriately. The following table describes the types of Ennov InSight users.
| User | Description |
| Group | An IdP group that consists of one or more named users. |
| Note: Avoid the use of special characters in user names as they can prevent the ability to log on to Ennov InSight . For more information, see the topic Special Characters. | |
| Group user | A user who has not been assigned privileges directly; rather this user has inherited privileges from his or her group; a group user is not displayed in the list until he or she has logged in to Ennov InSight or has been added to Ennov InSight . The user's IdP groups are displayed in the list. |
| Note: If a user exists in more than one IdP group that has been added to Ennov InSight and those groups have also been assigned different privileges, then the privileges executed for that user cannot be predicted. | |
| Overridden user | A user who had previously been assigned privileges through a group, and has since been disassociated from that group (using the functionality provided by Ennov InSight to disassociate the user). |
| User with no groups | A user who exists in an IdP,but who is not part of an IdP group. This user is added to Ennov InSight and privileges are assigned directly. |
Ennov InSight Administration 7.3 Log on to IdP Configured Ennov InSight
Notes About Users
— If the user belongs to an IdP group and the group is already in Ennov InSight , then the user inherits the established privileges of the group. If you want to assign specific privileges to the user that are different from the group's privileges, you can override the rights by disassociating the user from the group and changing the security privileges.
— To assign security privileges to users who do not belong to an IdP group, you must first override the users by clicking the Disassociate User from the Group button and then assign security privileges to each individual user.
— Alternatively, if you choose to use the field level/page-level security feature in Ennov InSight , you can associate these users with a role and assign security privileges to the role.
— Ennov InSight does not support a domain user having membership in a group of a different domain.
Security Privileges for Users or Groups
Security privileges assigned to individual users or a groups of users are used to manage the user accounts and group assignments.
The levels of security privileges that you can assign to individual users or a group of users are:
— Enabling and disabling users
— License modules
— Access rights
— Product family/product rights
— Application country rights
— Entity security
— Home page access
— Functional security
— Field-level/page-level security
You manage user accounts, passwords, and group assignments through your Identity Provider (IdP) server, rather than in Ennov InSight . However, you assign Ennov InSight privileges to an IdP users and groups by adding them to the Users/Groups page in security administration. In addition, you assign privileges to roles using security administration.
The following sections describe the procedures you should use to add users and groups and specify security privileges.
Note: When you change an IdP settings and restart the server, e-mail addresses may became unavailable in Concerned Parties attributes and Notifications; the list of available e-mail addresses will be empty. This happens because the users that existed before you change the IdP settings have not been resynchronized with an IdP. If you change an IdP, you must synchronize these changes before the e-mail list will be updated.
Enabling and Disabling User Privileges
Enabling or disabling user security privileges determines user access to the Ennov InSight system. User privileges can be enabled or disabled as follows:
| User Privilege Detail | Description |
| Enabled | The user is able to log on to Ennov InSight . |
| Disabled / as of |
The user cannot log on to Ennov InSight as of the date specified. Users cannot be deleted from the system after they have been assigned privileges or logged on. However, their account can be disabled. A user with an account set to be disabled as of a future date can log on until that date. |
Access Rights
Your license contract for Ennov InSight determines the number of read, write, and admin licenses you may assign for each module. If you are assigning privileges to a group of users, the number of licenses you use is the same as the number of users in that group. You cannot exceed the privileges indicated by your license. Access rights cannot be assigned unless at least one module license is set to Read. The following table describes the access rights.
| Access | Description |
| None | Users cannot view restricted entities. |
| Read | Users have view privileges only. |
| Write | Users have Read privileges plus create and modify privileges. |
| Admin | Users have Write privileges plus delete and override privileges. For Documentum, an admin user must have the Write privilege on repository root. The Ennov InSight Admin user also needs to have System Administrator privileges assigned in Documentum. |
Manage User Access Rights
Manage user access by setting rights consistently.
Ennov InSight offers several methods for controlling user access. Using a consistent approach will ensure that the right users have access to the information they need and no more.
An example of defining user access inconsistently:
- Under Product Family/Product Rights, the user access to a product family is provided.
- Under Application Country Rights, the user access to applications is provided .
- Under Product Family/Product Rights, the user access to the product family is removed.
In this case, the user cannot see the product family in the product family tree, but can still edit applications on application pages.
Product Family/Product Rights
Provide record-level security permissions with the Product Family/Product rights.
Record-level security permissions allow access to a specific product family first followed by access to an application and other elements. Enabling product family/product rights allows you to view events, registrations, tasks, references, notifications, sequences, sequence assemblies, and product detail sets associated with the specified product family and its products. This applies to all views as well as querying.
To ensure privileges are applied correctly for a user, first select and save the license module security settings, then choose the other security settings (product family/product, application country, entity security, and so on).
Important: Duplicate or conflicting product family permissions should not be defined when creating security permissions for users or groups as it may cause security conflicts for a user when they access the application. For example, if write access for a product family is enabled to a user or a group, that same product family should not be added again. The security screen as it is currently implemented does not prevent this.
Make sure that you define security for a user consistently throughout Security Administration. Defining security inconsistently does not produce the required results .
Product Family/Product Rights Options
The Product Family/Product Rights dialog box provides options for assigning user privileges for record-level access.
The following table describes the options in the Product Family/Product Rights dialog box.
| Option | Description |
| All |
Grants the user access to all product families and their products. Users who can create product families (Data Administration set to Yes) should be assigned All privileges. Otherwise, a user may be able to create product families he or she cannot view. If you do not select All, every new product family must be individually assigned for that user. The potential for an error restricting the number of security permission can occur. |
| Note: When you have a large number of individual Product Family/Product security permissions set up in the system, Ennov InSight may issue an error message or a warning that too many product families are selected when you attempt to add a new group or user. To work around this issue, create more than one Product Family/Product security entry and split the product family permissions among them. In many cases, splitting the permissions between two entries is sufficient. | |
| Selected | Grants the user access to only the product families you choose in the selection box and their products. For example, a user can be granted Read access to one set of product families and Write access to another set of product families. |
| Access Level |
Indicates the access level for the selected product families and their products. — None - prohibits access — Read - view privileges only — Write - Read privileges plus create and modify privileges — Admin - Write privileges plus delete privilege |
Product Families and the Default Administrative User
The default user in Ennov InSight is an administrative user
As an administrative user, you can: add users, groups and roles; assign and modify user security privileges; create product families. However, by default, the administrative user cannot view the product families that he or she creates. You must enable the administrative user to view the product families.
Application Country Rights
For each product family that a user can access, the Application Country Rights dialog box enables an administrator to grant the user access to the specific countries associated with those product families.
Note: To ensure user privileges are applied correctly, first select and save the license module security settings, then choose the other security settings, such as: product family/product, application country, and entity security.
— For CP (Centralized Procedure) applications, users must have access to the individual rapporteur or co-rapporteur country, or any one of the application countries, to view the application.
— For MRP (Mutual Recognition Procedure) type applications, users who have access to a country that is either a CMS (concerned member state) or an RMS (reference member state) can see that application, all associated sequences, and other information.
Application Country Rights Attributes
The Application Country Rights dialog box enables an administrator to grant users access to the specific countries. The Application Country Rights attributes provide permissions to users.
The table describes the attributes of the Application Country Rights option.
| Option | Description |
| Product Families - All |
Applies the country rights you specify in the Countries box to all product families and the products to which a user has access. If you do not select All, countries must be individually assigned to every new product family. Users who can create product families (Data Administration set to Yes) should be granted All privileges. Else, users will be able to create product families but they will not be able to view them. |
| Option | Description |
| Product Families - Select |
Applies the country rights you specify in the Countries box to only the product families you choose in the selection box. — To create and use an application without products and product families, only NOT DEFINED must be set for Application Country Rights. In this case, product families are not selected and any option can be selected for Countries. — If the Product Families are NOT DEFINED, a product cannot be assigned to an application and the Application icon will not be available on the Product Family Attributes page. |
| Countries - All | Grants user access to all countries associated with the product families chosen in the Product Families box. |
| Countries - Select | Grants the user access to only the countries you choose in the selection box. |
| Access Level |
Indicates the access level for the selected product families and their products. — None- denied access. — Read - view privileges only. — Write - read access with create and change privileges. — Admin - write access with delete privileges. |
Entity Security Options
In the Entity Security section in System Administration, the entities that are available depend on the license modules available to the user. For example, if you give a user write privileges for the Submission Planning and Tracking (SPT) module, only the functions associated with the SPT module are available.
The Entity Security options in Security Administration enable an administrator to assign the appropriate privileges for access to entities that are required for a user. The following table describes the available entity security privilege options.
| Privilege | Description |
| None | Prohibits access. |
| Read | View privileges only. |
| Write | Read, create, and modify privileges. Can also delete product families and applications if there are no subordinate entities. |
| Admin | Write plus delete privileges. |
Ennov InSight License Modules by Feature
The following tables list Ennov InSight features and the license modules in which they are available.
Product Families, Clinical Trial Shared Data
| Subfeature | Subfeature Description | License Modules |
| Product family categorization | Define parent active substance family. |
— Electronic Lifecycle Publishing — Paper Review Publishing — Product Detail Management — Registered Document Analysis — Registration Planning and Tracking — Submission Planning and Tracking |
| Product family extended attributes | Full support includes product family attributes. |
— Registration Planning and Tracking — Product Detail Management |
| CT Shared Data | Clinical Trial Shared Data for a product family. |
— Registration Planning and Tracking — Product Detail Management |
Products, Pharmaceutical Products
| Subfeature | Subfeature Description | License Modules |
| Product detail |
Define consumable products (Example: dosage forms). |
— Registration Planning and Tracking — Product Detail Management — Submission Planning & Tracking — Electronic Lifecycle Publishing — Paper Review Publishing |
| Pharmaceutical product detail | Define a product used to treat disease (Example: medicines or drugs). |
— Registration Planning and Tracking — Product Detail Management — Submission Planning & Tracking — Electronic Lifecycle Publishing — Paper Review Publishing |
Registrations, Full Product Presentations, Registration FPP Attachments and FPP Previous EV Codes
| Subfeature | Subfeature Description | License Modules |
| Registration detail | Define registration details, including those that vary by country for MRP applications. |
— Registration Planning and Tracking — Product Detail Management |
| Subfeature | Subfeature Description | License Modules |
| Copy Package Set Registration |
Copy a package set registration. Requires at least Write permissions for the Registrations and Full Product Presentation (FPP) (applicable to the New Package Set specific Registration(s) flow) in the Entity Security section. |
— Registration Planning and Tracking — Product Detail Management |
| Full product presentation detail | Define detailed information about the product (Example: Special Measures, Product Strength). |
— Registration Planning and Tracking — Product Detail Management |
| FPP previous EV code detail | Define the previous EV code for the full product presentation. |
— Registration Planning and Tracking — Product Detail Management |
| Registration FPP attachment detail | Presents an attachment for the detailed product information. |
— Registration Planning and Tracking — Product Detail Management |
| Copy full product presentation |
Copy a full product presentation under the same registration, or under different registrations. At least Write permissions for the Full Product Presentation (FPP) in Entity Security section. |
— Registration Planning and Tracking — Product Detail Management |
Registration Attachment
| Subfeature | Subfeature Description | License Modules |
| Registration Attachment | Registration Attachment entity is a Printed Product Information (PPI) attachment type and should be created to later attach it to the Full Product Presentation. |
— Registration Planning and Tracking — Product Detail Management |
| Copy registration attachment |
Copy a registration attachment. — At least Write permissions for the Registration Attachment in Entity Security section. — At least Write permissions for the Full Product Presentation (FPP) in Entity Security section. |
— Registration Planning and Tracking — Product Detail Management |
Medicinal Products, Medicinal Product Actions, Data Visualization
| Subfeature | Subfeature Description | License Modules |
| Medicinal Product detail |
Medicinal product for registration. At least Write permissions for the Medicinal Product in Entity Security section. |
— Registration Planning and Tracking — Product Detail Management |
| Medicinal Product Action detail |
Medicinal product action for registration. At least Write permissions for the Medicinal Product Action in Entity Security section. |
— Registration Planning and Tracking — Product Detail Management |
|
IDMP Data Generation wizard |
Access to the IDMP Data Generation wizard from the wizards menu with the Write permissions. | IDMP |
| IDMP Data Visualization | Access to the IDMP Data Visualization from on the Medicinal Product Action Attributes menu with Write permissions. | IDMP |
xEVMPD Wizards and Queries
| Subfeature | Subfeature Description | License Modules |
|
XEVMPD Submission wizard |
Access to the XEVMPD Submission wizard from the wizards menu and Home page with Write permissions. |
xEVMPD |
|
XEVMPD Acknowledgement wizard |
Access to XEVMPD Acknowledgement wizard from the wizards menu and Home page with Write permissions. |
xEVMPD |
| Queries |
Access to the following Registration Planning and Tracking queries with Read and Write permissions: — XEVMPD Submissions - QC Verification and Audit — XEVMPD Submissions and Acknowledgements |
xEVMPD |
Applications
| Subfeature | Subfeature Description | License Modules |
| Application detail | Ability to define overall marketing authorization (Example: NDA). |
— Electronic Lifecycle Publishing — Paper Review Publishing — Product Detail Management — Registered Document Analysis — Registration Planning and Tracking — Submission Planning and Tracking |
| Application Countries tab | Support for European procedures (MRP and CP) including collection of countryspecific data (primarily dates) for the application. |
— Electronic Lifecycle Publishing — Paper Review Publishing — Product Detail Management — Submission Planning and Tracking — Registration Planning and Tracking |
| Copy application | Copy an application. |
— Registration Planning and Tracking — Product Detail Management |
| Create Application Wizard |
Access to the Create Application Wizard from the wizards menu with the Write permissions. Access to Events for the Create Application Wizard from the wizards menu with the Write permissions. |
— Electronic Lifecycle Publishing — Submission Planning and Tracking |
Comparators
| Subfeature | Subfeature Description | License Modules |
| Comparators | Comparators are used in clinical trials to compare the success of a medicine under study to another medicine or placebo. |
— Registration Planning and Tracking — Product Detail Management |
Events
| Subfeature | Subfeature Description | License Modules |
| Event detail | Define initial filing event and other major updates (Example: variations) to an application. |
— Electronic Lifecycle Publishing — Paper Review Publishing — Product Detail Management — Registered Document Analysis — Registration Planning and Tracking — Submission Planning and Tracking |
| Copy Event Wizard | Copy an event to multiple applications in the product family associated with a source event. |
— Electronic Lifecycle Publishing — Product Detail Management — Registration Planning and Tracking — Submission Planning and Tracking |
| Create Submission wizard | Automates creation of initial applications, major updates and amendments. |
— Electronic Lifecycle Publishing — Paper Review Publishing — Registered Document Analysis — Registration Planning and Tracking — Submission Planning and Tracking |
| Event country status schedule | Define projected event status dates, track status history, and compare actual and planned dates for major milestones. |
— Registration Planning and Tracking — Submission Planning and Tracking |
Sequences
| Subfeature | Subfeature Description | License Modules |
| Sequence detail | Define filings/amendments (regulatory submission correspondence to authorities in support of an application). |
— Electronic Lifecycle Publishing — Paper Review Publishing — Registered Document Analysis — Registration Planning and Tracking — Submission Planning and Tracking |
| Sequence status schedule | Define projected sequence status dates, track status history, and compare actual and planned dates for major milestones. |
— Registration Planning and Tracking — Submission Planning and Tracking |
Product Detail Sets (PDS)
| Subfeature | Subfeature Description | License Modules |
| Product detail set detail | Capture product detail approvals, such as for substance, product, packaging manufacturers, labeling, and product indications. |
— Registration Planning and Tracking — Product Detail Management |
| PDS templates | Save PDS information within a product family as a template. |
— Registration Planning and Tracking — Product Detail Management |
Assembly Types
| Subfeature | Subfeature Description | License Modules |
| Lifecycle sequence assemblies | Build hierarchical collections of source documents associated with specific regulatory activities and sequences, and add to the current view for lifecycle. |
— Electronic Lifecycle Publishing — Registered Document Analysis — Submission Planning and Tracking |
| Supporting sequence assemblies | Build hierarchical collections of source documents associated with specific regulatory activities and sequences. |
— Electronic Lifecycle Publishing — Paper Review Publishing — Registered Document Analysis — Submission Planning and Tracking |
| Standalone assemblies | Build hierarchical collections of source documents for miscellaneous use. |
— Electronic Lifecycle Publishing — Paper Review Publishing — Registered Document Analysis — Submission Planning and Tracking |
| Assembly templates | Build an assembly template. |
— Electronic Lifecycle Publishing — Paper Review Publishing — Registered Document Analysis — Submission Planning and Tracking |
Activity Workflow
| Subfeature | Subfeature Description | License Modules |
| Activities | Activities are steps within the Workflow that are required to complete the assigned Workflow. Workflows can contain multiple Activities, with dependencies and pre-set values. | Ennov InSight Workflow Integrations |
Projects
| Subfeature | Subfeature Description | License Modules |
| Global Project Planning (GPP) wizard |
Facilitates planning and data entry for multiple countries or applications. At least Write privileges for Projects and Events. Home page access security enabled for GPP wizard. |
— Registration Planning and Tracking — Submission Planning and Tracking |
Tasks, Notifications, and References
| Subfeature | Subfeature Description | License Modules |
| Task detail | Define hierarchical to-do lists associated with other entities. |
— Registration Planning and Tracking — Submission Planning and Tracking |
| Task status schedule | Define the sequence of statuses for a task, and for each status, the projected date when the task first has the status. |
— Registration Planning and Tracking — Submission Planning and Tracking |
| Notification detail | Define and automatically send e-mail notifications based on data updates, approvals, and other changes in Ennov InSight . |
— Registration Planning and Tracking — Submission Planning and Tracking |
| Reference detail | Associate external documents, URLs, and internal links with entities; supports correspondence and DMS integration. |
— Registration Planning and Tracking — Submission Planning and Tracking |
Change, Change Details
| Subfeature | Subfeature Description | License Modules |
| Change | Defines the actual regulatory change being planned or requested and have specific metadata associated. | Registration Planning and Tracking |
| Change details | Capture details of the Change as a subentity to the Change entity. | Registration Planning and Tracking |
Reports
The reports listed in the table include the reports that you can generate by using Ennov InSight queries.
| Subfeature | Subfeature Description | License Modules |
| Querying menu | Run queries and quick search; not all quick search entities may apply to the module; available queries vary by module. | The modules related to the kind of query that you run |
| Public/private customized queries | Create both private and public custom queries. |
— Electronic Lifecycle Publishing — Paper Review Publishing — Product Detail Management — Registered Document Analysis — Registration Planning and Tracking — Submission Planning and Tracking |
| Ad hoc Reporting | Create and execute ad hoc reports against the Ennov InSight reporting schema. |
— Product Detail Management — Registered Document Analysis — Registration Planning and Tracking — Submission Planning and Tracking |
| Specialized assembly queries | Execute specialized queries directly from the assembly tree. |
— Electronic Lifecycle Publishing — Paper Review Publishing — Registered Document Analysis — Submission Planning and Tracking |
| Application, Event, Sequence report | Provides information that you select about product families, applications, events, and sequences. |
— Registration Planning and Tracking — Submission Planning and Tracking |
Approval Management
| Subfeature | Subfeature Description | License Modules |
| Approved views | Create and view document collections consisting of currently approved versions for a particular country. Full support includes the ability to create new assemblies from these views. | Registered Document Analysis |
| Update Status wizard | Automate approval of an application or major update. |
— Registered Document Analysis — Registration Planning and Tracking — Submission Planning and Tracking |
Submittal Management and Lifecycle
| Subfeature | Subfeature Description | License Modules |
| Submitted view | Create and view document collections consisting of currently submitted versions for a particular country. Create and manage eCTD lifecycles. Full support includes ability to create new assemblies from these views. |
— Electronic Lifecycle Publishing — Registered Document Analysis — Submission Planning and Tracking (does not enable you to create new assemblies) |
| Change Submittal Status wizard | Automate submittal of an application or major update and creation of lifecycle. |
— Electronic Lifecycle Publishing — Paper Review Publishing — Registered Document Analysis — Submission Planning and Tracking |
| Add to/remove from lifecycle | Manually create and manage lifecycle |
— Electronic Lifecycle Publishing — Registered Document Analysis |
| Working view | Assign changes and leaf operations from a cumulative view of eCTD submission sequences. |
— Electronic Lifecycle Publishing — Registered Document Analysis — Submission Planning and Tracking |
| Sequence view | View the current cumulative sequence. |
— Electronic Lifecycle Publishing — Paper Review Publishing — Registered Document Analysis — Submission Planning and Tracking |
| Publishing view | Publish the current cumulative sequence and add publishing effects. |
— Electronic Lifecycle Publishing — Paper Review Publishing — Registered Document Analysis — Submission Planning and Tracking |
General Assembly
| Subfeature | Subfeature Description | License Modules |
| General assembly features and functions | Expand/collapse all, edit hierarchical assembly structure (including lifecycle actions, if applicable), browse or search document repositories and assign documents, retrieve document properties from DMS, view DMS documents, modify assembly attributes, delete assemblies. |
— Electronic Lifecycle Publishing — Paper Review Publishing — Registered Document Analysis — Submission Planning and Tracking |
| Subfeature | Subfeature Description | License Modules |
| Import/export | Create an assembly from a template, XML assembly file, or VDM. Export assemblies to XML assembly files and VDMs. |
— Electronic Lifecycle Publishing — Paper Review Publishing — Registered Document Analysis — Submission Planning and Tracking |
| Document placeholders | Create a planned document in the assembly. |
— Electronic Lifecycle Publishing — Paper Review Publishing — Registered Document Analysis — Submission Planning and Tracking |
| Mass-apply version bindings | Incrementally set bindings across the assembly, including locking the binding to the current version. |
— Electronic Lifecycle Publishing — Paper Review Publishing — Registered Document Analysis — Submission Planning and Tracking |
| View file from document and leaf | Viewing in-place repository, submission, and published content. |
— Electronic Lifecycle Publishing — Paper Review Publishing — Registered Document Analysis — Submission Planning and Tracking |
| Document status awareness | Binding icons and View Document List query. |
— Electronic Lifecycle Publishing — Paper Review Publishing — Registered Document Analysis — Submission Planning and Tracking |
|
Support and assignment of unfinalized documents |
View status of unfinished documents for assembly. | Submission Planning and Tracking |
Planning and Tracking
| Subfeature | Subfeature Description | License Modules |
| Planning and tracking assembly features and functions | Edit document path and binding information, view/assign related documents, export assembly to Microsoft Excel. | Submission Planning and Tracking |
| Assembly search and replace | Search and replace text in assembly element attributes for planning and creating templates of document locations and assignments. | Submission Planning and Tracking |
| Subfeature | Subfeature Description | License Modules |
| Assembly Status query | Provides the current assembly status including performance metrics. | Submission Planning and Tracking |
Review and Approval
| Subfeature | Subfeature Description | License Modules |
| Review and approval assembly features and functions | Version assemblies with assembly currency. | Submission Planning and Tracking |
| Incremental locking | Incrementally lock assembly by module and by section or folder hierarchy. | Submission Planning and Tracking |
| Assembly baselines and baseline querying | Create baselines for assembly comparison querying. | Submission Planning and Tracking |
|
Assembly reference location |
Create and set reference locations and synchronize with DMS. | Submission Planning and Tracking |
| Assembly status change | Change status of assembly including automatic lock down if assembly is finalized. | Submission Planning and Tracking |
| Unlock the folder | Unlock the locked assembly folder. | Submission Planning and Tracking |
Document Analysis
| Subfeature | Subfeature Description | License Modules |
| Document analysis features and functions | Create approved views, query and view registered documents, query and view lifecycle history. | Registered Document Analysis |
| Where Used query |
Determine where a document is used across applications, countries, products, versions, and assemblies. The Output File hyperlink in the Where Used query is supported only for sequence assemblies, not standalone and template assemblies. |
— Registered Document Analysis — Submission Planning and Tracking |
General Publishing
| Subfeature | Subfeature Description | License Modules |
|
Publishing job queue and audit trail |
View the status of all publishing jobs; sort, export, and cancel jobs. |
— Electronic Lifecycle Publishing — Paper Review Publishing |
|
Publishing Readiness query, Summary query, Link Inspector, and publishing log |
View eCTD conformity and status before and after the publishing job is executed. |
— Electronic Lifecycle Publishing — Paper Review Publishing |
|
Repository export utility |
Transfer published output from any repository source to any repository destination (DMS or File/Folder). |
— Electronic Lifecycle Publishing — Paper Review Publishing |
| Automatic extractions | Create document extractions for use in bookmarks, TOCs, and links automatically upon assignment. |
— Electronic Lifecycle Publishing — Paper Review Publishing (with Ennov InSight Rendering only) |
| Automatic renditions | Create PDF renditions automatically and by request upon publishing or Prepare to Publish when existing renditions are missing or outdated. Requires an additional license for Ennov InSight Rendering. |
— Electronic Lifecycle Publishing — Paper Review Publishing (with Ennov InSight Rendering only) |
eCTD Publishing
| Subfeature | Subfeature Description | License Modules |
| eCTD publishing assembly features and functions | Create eCTD and electronic output, specify assembly-level publishing options for eCTD, links, and variables, change element types to specify leafspecific publishing properties, request generated published output (eCTD and electronic). | Electronic Lifecycle Publishing |
| Electronic hyperlinks | Create, retarget, and set channel and settings on hyperlinks. |
— Electronic Lifecycle Publishing — Paper Review Publishing |
| Reference leaf elements | Create leaf elements to reference other leaf elements with querying on referenced leaf elements for a specific submission. |
— Electronic Lifecycle Publishing — Registered Document Analysis (query only) |
| Subfeature | Subfeature Description | License Modules |
| eCTD import and merge | Import one or multiple eCTD sequences; merge eCTD sequences. | Electronic Lifecycle Publishing |
| Create eCTD wizard | Create or update an eCTD sequence. | Electronic Lifecycle Publishing |
| Bulk eCTD Wizard | Migrate multiple eCTD submissions to Ennov InSight from another system in a supported document management system (DMS). | Electronic Lifecycle Publishing |
| Create Study Reports wizard | Add study reports to an eCTD sequence. | Electronic Lifecycle Publishing |
| Create Submission Plan Wizard | Create a submission plan and associate entities such as applications, events, and sequences to the submission plan. |
— Electronic Lifecycle Publishing — Submission Planning and Tracking |
Paper Publishing
| Subfeature | Subfeature Description | License Modules |
| Paper publishing assembly features and functions | Create paper and electronic output, specify assembly-level publishing options for publishing effects, change folder and document attributes for publishing effects, request published output (paper and electronic). |
— Electronic Lifecycle Publishing — Paper Review Publishing |
| Table of contents | Create, edit, generate, and modify TOCs. Access the TOC editor. |
— Electronic Lifecycle Publishing — Paper Review Publishing |
| Special sheets | Create, edit, generate, and modify special sheets including slip sheets, tabs, and cover pages. | Paper Review Publishing |
| Volumes | Create and modify volumes, bulk volumize, move, lock, and manipulate volumes. | Paper Review Publishing |
| Overlays | Define and use overlays. Define page size, shape, scaling, and format for output. | Paper Review Publishing |
| Paper crossreferences | Create, retarget, and set channel, stamp, and settings on paper crossreferences. | Paper Review Publishing |
Administration
| Subfeature | Subfeature Description | License Modules |
|
Administration menus (Data, Security and Technical) |
Modify data picklists, connect to and define DMS and file system repositories, administer security. Not all options displayed to an administrator are available in all modules. Example: picklist options for data admin may not be displayed in an application. Notification administration does not apply to all modules. Includes all audit trail querying. |
— Electronic Lifecycle Publishing — Paper Review Publishing — Registered Document Analysis — Registration Planning and Tracking — Product Detail Management — Submission Planning and Tracking |
Home Page Access
The functions and elements that are available to users on the Home Page depend on the license modules selected and the Home Page Access settings in System Administration. For example, if you give a user write privileges for the Submission Planning and Tracking (SPT) module, only the elements associated with the SPT module are available.
Yes enables a user to access specific tabs and menu commands on the home page. For example, if Applications is set to Yes, the user can view the Applications tab. In addition, the Applications command appears on the New menu.
The applications that are displayed are further restricted by product family/product rights and application country rights.
Home page access options also include administration access. If you choose Yes for Security Administration, Data Administration, and Technical Administration, these commands are available on the home page and the user is able to perform administration activities.
Home Page Access Settings
In Security Administration, the Home Page Access settings enable an administrator to grant users access to functionality on the home page, subject to the license modules available to the user.
The availability of wizards and other options on the home page is determined by the license modules to which the user has access and whether you choose Yes or No to the wizards under Home Page Access. Wizard access is not affected by the product family/product and application country rights assigned to a user. Therefore, even though a user may have only Read privileges for product family/products and application countries, if you choose Yes for the wizard options, the wizard commands are available to the user on the home page.
If the default [Select] is set it denies permission and equals None.
Security Defaults for Home Page Access
In the following table, each permission can be changed only if any of the listed modules is installed and licensed. If the Selected Module Permission is set to Read, all elements are limited to Read.
| Permission | License Modules |
| Create Submission Wizard |
— Registration Planning & Tracking — Submission Planning & Tracking — Electronic Lifecycle Publishing — Paper Review Publishing |
| Create Submission Plan Wizard |
— Electronic Lifecycle Publishing — Submission Planning & Tracking |
| Create eCTD Wizard | Electronic Lifecycle Publishing |
| Import eCTD | Electronic Lifecycle Publishing |
| Bulk Import eCTD Wizard | Electronic Lifecycle Publishing |
| Change Wizard | Registration Planning & Tracking |
| Change Submittal Status Wizard |
— Registration Planning & Tracking — Submission Planning & Tracking — Electronic Lifecycle Publishing — Paper Review Publishing |
| Event Copy Wizard |
— Registration Planning & Tracking — Product Detail Management — Submission Planning & Tracking — Electronic Lifecycle Publishing |
| Global Project Planning Wizard |
— Registration Planning & Tracking — Submission Planning & Tracking |
| Update Applications Wizard |
— Registration Planning & Tracking — Submission Planning & Tracking |
| XEVMPD Wizards |
— Registration Planning & Tracking — Product Detail Management |
| Permission | License Modules |
| Product Families |
— Registration Planning & Tracking — Product Detail Management — Submission Planning & Tracking — Electronic Lifecycle Publishing — Paper Review Publishing |
| Applications |
— Registration Planning & Tracking — Product Detail Management — Submission Planning & Tracking — Registered Document Analysis — Electronic Lifecycle Publishing — Paper Review Publishing |
| Events |
— Registration Planning & Tracking — Product Detail Management — Submission Planning & Tracking — Registered Document Analysis — Electronic Lifecycle Publishing — Paper Review Publishing |
| Sequences |
— Registration Planning & Tracking — Submission Planning & Tracking — Registered Document Analysis — Electronic Lifecycle Publishing — Paper Review Publishing |
| Submission Plans |
— Submission Planning & Tracking — Electronic Lifecycle Publishing |
| Publishing Settings Library Template |
— Electronic Lifecycle Publishing — Paper Review Publishing |
| Views |
— Submission Planning & Tracking — Registered Document Analysis — Electronic Lifecycle Publishing — Paper Review Publishing |
| Registrations |
— Registration Planning & Tracking — Product Detail Management |
| Permission | License Modules |
| Medicinal Products |
— Registration Planning & Tracking — Product Detail Management |
| Medicinal Products Actions |
— Registration Planning & Tracking — Product Detail Management |
| Registration Attachments |
— Registration Planning & Tracking — Product Detail Management |
| Full Product Presentations |
— Registration Planning & Tracking — Product Detail Management |
| Projects |
— Registration Planning & Tracking — Submission Planning & Tracking |
| Comparators |
— Registration Planning & Tracking — Submission Planning & Tracking |
| PDS Templates | Product Detail Management |
| PDS | Product Detail Management |
| Tasks |
— Registration Planning & Tracking — Submission Planning & Tracking — Registered Document Analysis |
| System Alert | Any InSight Module |
| Alert Center | Any InSight Module |
| References |
— Registration Planning & Tracking — Submission Planning & Tracking |
| Notifications |
— Registration Planning & Tracking — Submission Planning & Tracking |
| Assembly Templates |
— Submission Planning & Tracking — Registered Document Analysis — Electronic Lifecycle Publishing — Paper Review Publishing |
| Permission | License Modules |
| Standalone Assemblies |
— Submission Planning & Tracking — Registered Document Analysis — Electronic Lifecycle Publishing — Paper Review Publishing |
| Quick Search |
— Registration Planning & Tracking — Product Detail Management — Submission Planning & Tracking — Registered Document Analysis — Electronic Lifecycle Publishing — Paper Review Publishing |
| Querying Menu |
— Registration Planning & Tracking — Product Detail Management — Submission Planning & Tracking — Registered Document Analysis — Electronic Lifecycle Publishing — Paper Review Publishing |
| Job Requests |
— Registration Planning & Tracking — Product Detail Management — Submission Planning & Tracking — Electronic Lifecycle Publishing — Paper Review Publishing |
| Security Administration |
— Registration Planning & Tracking — Product Detail Management — Submission Planning & Tracking — Registered Document Analysis — Electronic Lifecycle Publishing — Paper Review Publishing |
| Data Administration |
— Registration Planning & Tracking — Product Detail Management — Submission Planning & Tracking — Registered Document Analysis — Electronic Lifecycle Publishing — Paper Review Publishing |
| Permission | License Modules |
| Technical Administration |
— Registration Planning & Tracking — Product Detail Management — Submission Planning & Tracking — Registered Document Analysis — Electronic Lifecycle Publishing — Paper Review Publishing |
| Workflow Administration | Ennov InSight Workflow Integrations |
| Find Activities | Ennov InSight Workflow Integrations |
Functional Security
In Security Administration, the Functional Security settings enable an administrator to grant access to users for functionality in the system, subject to their available license modules.
The following table describes the functional security on the Privilege Detail page.
| Assembly function | Description |
| Planning and Tracking | Grants access to specific Submission Planning and Tracking activities (for example, grants access to creating a new assembly from a view, modifying an assembly, using the Create Submission wizard). Planning and tracking also determines the availability of the event, sequence and task status schedule activities. |
| Review and Approval | Grants access to specific Submission Planning and Tracking activities (for example, dragging and dropping documents from CoreDossier to an assembly, modifying an assembly, creating an assembly version). |
| eCTD Publishing | Grants access to specific Electronic Lifecycle Publishing activities (for example, deleting an assembly, copying an assembly URL, assigning documents), and enables publishing requests from the assembly. Allows export of publishing output to the file system or document management system (DMS). |
| Document Analysis | Grants access to specific Registered Document Analysis activities (for example, creating and removing an approved view, modifying an assembly, DMS synchronization, monitoring the View tab for submitted and approved sequences, and querying). |
| Assembly Status Change | This icon  on the Assembly
Attributes page provides the ability to change the status or to
lock the assembly with read access only. |
|
Create Missing Renditions and Extractions |
Enables you to create missing renditions and extractions. |
| Assembly function | Description |
|
Force New Renditions and Extractions |
Enables you to create new renditions and extractions and overwrite the existing ones. |
| Paper publishing | Enables you to generate volumes and files when submitting a publishing request, to generate table of contents (TOC) and special sheets when preparing to publish, and to specify TOCs, general/paper, overlays, special sheets, variables, and volume publishing settings from the general publication settings pages. |
|
Volume Modification |
Not currently used |
| Table of Contents Creation | Not currently used |
| Cross-reference tools | Makes available all cross-reference/linking tools (Link Inspector query, InProcess Renditions). Effects the cross-reference tools only, no other functional security selections depend on cross-reference tools or need to be added. All links are processed as normal in each file. This selection controls only access to various tools such as link inspector querying, access to edit and create preflight renditions through the interface, access or operation of selections in prepare for publishing and access to modify links in the link query. |
Assembly Functions and License Modules
The assembly functions that are available depend on the license modules available to the user:
| Functional Security | License Module |
| Planning and Tracking | Submission Planning and Tracking |
| Review and approval | Submission Planning and Tracking |
| eCTD publishing |
— Registered Document Analysis — Electronic Lifecycle Publishing |
| Document analysis | Registered Document Analysis |
| Assembly status change |
— Registered Document Analysis — Electronic Lifecycle Publishing — Paper Review Publishing |
| Create Missing Renditions and Extractions |
— Registered Document Analysis — Electronic Lifecycle Publishing — Paper Review Publishing |
| Functional Security | License Module |
| Force New Renditions and Extractions |
— Registered Document Analysis — Electronic Lifecycle Publishing — Paper Review Publishing |
| Paper publishing | Paper Review Publishing |
| Cross-reference tools |
— Electronic Lifecycle Publishing — Paper Review Publishing |
Field-Level/Page-Level Security
Field level/page level security is an optional Ennov InSight function. You can create roles in the system that enable you to assign field-level/page-level security. Each role has a set of fields that can be defined as read-only, modifiable or hidden for each page on which these fields reside.
Ennov InSight provides three XML-mapped roles: user, liquent_role1, and liquent_role2. When you create a role, you associate it with one of the XML-mapped roles available. Users and groups assigned to the role you create have access to fields as defined by the role. Field-level/page-level security applies to the following Ennov InSight entities: — Product Families
— Products
— Applications
— Registrations
Note: For each role, each field on these entity pages is defined as read-only, modifiable, or hidden.
Users associated with liquent_role1 and liquent_role2 have the ability to create product families. While it is best practice is to not give liquent_role1 or liquent_role2 users data administration access, you can add the following empty field group to liquent_role1 and liquent_role2 in the meta.overrides.xml to prevent members of these roles from creating product families:
<fieldGroup name="adminCreateFieldGroup"/>
Please note, if the overrides file is modified to use this fieldGroup, a harmless MetaException error will occur.
Ennov InSight ships with three roles. However, there is no limit to the number of roles you can define. Contact your Account Executive to consult with our Client Enablement team for information about defining and configuring field-level security for your system.
If you do not use field-level security, the following apply:
— Users/groups with the appropriate security privileges are able to view all attributes associated with the product family, product, application and registration entities.
— Users/groups with the appropriate security privileges are able to create and modify product family, product, application and registration entities.
View Users and Groups
To view Users and Groups for configured Identity Providers (IdP):
- Select Go To > Security Administration.
- On the Security Administration page, click Users and Groups.
The Security Administration page lists all the users and groups along with the Identity Provider Name information.
Modifying a User or Group
In Security Administration, an administrator can modify user or group privileges in the application to disable, remove, re-associate or change the privileges.
In Security Administration, an administrator can modify user or group privileges in the application to disable, remove, re-associate or change the privileges.
To modify a user or group:
- Choose Go To > Security Administration.
The Security Administration page opens listing all the users and groups.
- Click the link for the user or group you want to modify.
The Privilege Detail page for the user or group opens.
- Do any of the following:
— To disable the user/group, choose Disable as of and enter the date when the user/group should no longer be able to log into Ennov InSight . If you do not specify a date, the user/group will remain enabled.
— To remove a user from a group, click Disassociate User from the Group, then change the privileges for the user. The User Type for an overridden user on the Privilege Detail page is STANDALONE.
Note: If the user does not belong to an IdP group and you click Disassociate User from the Group, the field-level/ page-level security assigned to the role with which the user is associated is retained unless you specifically move the user to a different role.
— Click Re-associate User with the Group to replace the user's privileges with those defined for the IdP group.
Note: Before you re-associate a user with a group, remove the user from any roles with which he or she has been associated.
— Change the security privileges for the user/group.
4. Click Save when you are finished.
Assign User or Group Security Privileges
In Security Administration, an administrator can assign security privileges for users or groups on the Privilege Detail page.
To assign security privileges for users or groups:
- Choose Go To > Security Administration.
The Security Administration page opens listing all the users and groups.
- Click the link for the user or group for which you want to assign privileges. The Privilege Detail page for the user or group opens.
- On the Privilege Detail page, specify the access
rights for the license modules.
After setting the access rights for a license module, wait for the page to refresh. The entity, home page access and functional security options associated with the module become available. After the page refreshes, you may define access rights for another license module.
- Click Save.
The license module options you chose are not saved until you click the Save.
- Under Entity Security, click the arrow for each entity you want to grant the user/group access to and set the access level to grant.
- Click Save.
- ClickProduct Family/Products Rights > Add.>
The Product Family/Product Rights dialog box opens.
- Do one of the following in the Product Family/Product
Rights dialog box:
Option Description All Give the user/group access to all product families. Select Select the specific product families the user/group can access. When using Select, you must return to this page to give the user/group access to any product families that are added later. - Click the Access Level arrow and choose the appropriate access level.
- Click Save.
- On the Privilege Detail page, click Add under Application Country Rights.
- In the Application Country Rights dialog box under
Product Families, do one of the following:
Option Description All Give the user/group the same application country access to all product families. Select Select the specific product families to which the user/group has application country access. When using Select, you must return to this page to give the user/group access to any product families that are added later. - In the Application Country Rights dialog box under
Countries, do one of the following:
Option Description All Give the user/group the same access to all countries for the product families specified in this step. Select Select the specific countries for the selected product families specified under Product Families. When using Select, you must return to this page to give the user/group access to any countries that are added later. Note: To configure a user with Read access level to all Application Countries and with Write access to some Application
Countries, you must follow a specific order: first add the Write access for the specific Application Countries, and then
(using the Add button) add the Read access to All. If you find that you cannot modify this setting, delete the user permission and perform this procedure to configure the permission/access for the user.
- Click the Access Level arrow and choose the appropriate access level.
- Click Save.
Note: If you are giving the user/group different access levels to different product families, you must repeat steps 9-12 for all the product family/application country combinations.
- Under Function Security, choose whether the user/group can
access the following: — Functions on the home page
— Assembly functions
- Click Save.
Create a Role
The system allows the creation of multiple roles with the same display name. However, this does not affect the behavior of the functionality. To avoid any confusion, it is recommended to give a unique display name to every role created in Ennov InSight .
Note: If you want to use the field-level/page-level security feature in Ennov InSight , you must create a role.
To create a role:
- Choose Go To > Security Administration.
The Security Administration page opens listing all the users and groups.
- On the Security Administration page, click
. - On the Create Role wizard window, enter a name for the role in the Display Name box.
- Click the XML-mapped Role arrow and choose the XML mapped role to associate with this role.
- Choose users and/or groups from the Users/Groups Available box and move them to the Selected box to associate them with the role.
- The list of available users is limited to the following: overridden users, users who do not belong to any IdP group, users who have been added to Ennov InSight , and who do not already belong to a role.
- The list of available groups includes groups that have been added to Ennov InSight and who do not already belong to a role.
- Click Next. The wizard confirms the creation of the role.
- Click Finish.
- Repeat steps 2 through 7 for each role you need to create.
Associate Users or Groups to a Role
Associating users or groups with a role provides those users or groups with the privileges assigned to the role in the system.
To associate users or groups to a role:
- Choose Go To > Security Administration.
The Security Administration page opens listing all the users and groups.
- On the Security Administration page, choose the role
from the list.
The Privilege Detail for role page opens.
- To associate users or groups to the role, select users or groups in the Available box and move them to the Selected box.
- Click Save.
Disassociate Users or Groups from a Role
Users and groups can belong to only one role in Ennov InSight
To disassociate users/groups from a role:
- Choose Go To > Security Administration.
The Security Administration page opens listing all the users and groups.
- On the Security Administration page, choose the role
from the list.
The Privilege Detail for role page opens.
- To disassociate users/groups from the role, select the users/groups in the Selected box and move them to the Available box.
- Click Save.
Security Privileges for Roles
Security privileges can be assigned to a role.
However, the security settings defined for a role are not applicable to the overridden users or groups assigned to the role. They apply to the users assigned to the role but have no defined security privileges.
Note: You may want to assign security privileges to a role when you want several users who are not part of an IdP group to have the same set of security privileges and field-level security in Ennov InSight .
Assign Security Privileges to a Role
In Security Administration, an administrator can assign security privileges to a role. Users and groups can then be assigned to the role.
To assign security privileges to a role:
- Choose Go To > Security Administration.
The Security Administration page opens listing all users and groups.
- On the Security Administration page, choose the role from the list.
- On the Privilege Detail page, choose the license modules.
Note: Choose one module and wait for the page to refresh. The entity, functional and assembly level options associated with the module become available. Then choose another module. The license module options you chose are not saved until you click the Save button.
- Save.
- Under Product Family/Products Rights, click Add.
- In the Product Family/Product Rights window, do one of
the following:
Option Description All Give the role access to all product families. Select Specific product families the role can access. When using Select, you must return to this page to give the user/group access to any product family/products that are added later. - In the Application Country Rights dialog box under
Product Families, do one of the following:
Option Description All Give the role access to the same application country to all product families. Select Select specific product families to which the role has application country access. When using Select, you must return to this page to give the role access to any product families that are added later. - In the Application Country Rights dialog box under
Countries, do one of the following:
Option Description All Give the role access to all countries for the product families specified in this step. Select Select the specific countries for the selected product families specified under Product Families. When using Select, you must return to this page to give the role access to any Countries that are added later. - Under Entity Security, click the arrow for each entity you want to grant the role access to and set the access level to grant, and then click Save.
- Click the Access Level arrow and choose the appropriate access level.
- Save.
- Under Function Security, choose whether the role can access the
following: — Functions on the home page
— Assembly functions
- Save.
Disable Roles
An administrator can disable a role that is no longer used in the system.
Before disabling the role in the system, users and groups must be disassociated from the role.
To disable a role:
- Disassociate users and groups from the role to be disabled.
Note: If the users and groups are not disassociated, field level security will remain in effect for the users and groups still associated with the disabled role.
- Choose Go To > Security Administration.
The Security Administration page opens listing all IdP users and groups.
- On the Security Administration page, choose the role from the list. The Privilege Detail for role page opens.
- On the Privilege Detail page for the role, choose Disabled as of and enter the date when the role should be disabled.
- Click Save.
Enable the Default Administrative User for Product Families
The access level for any users, including administrators, must be enabled to access or view product families.
To enable the default administrative user:
- On the home page, choose Go To > Security Administration.
- On the Users/Group page, choose the default admin user.
- Click Disassociate User from the Group, if necessary.
- Click OK in the dialog box that appears.
You can ignore any warnings that appear during this process.
- Under Product Family/Product Rights, click Add.
- Under Product Families, choose All.
- Click the Access Level arrow and choose Admin.
- Click Save to close the dialog box.
- Under Application Country rights, click Add.
- Under Product Families, choose All.
- Under Countries, choose All.
- Select Admin as the Access Level.
- Click Save to close the dialog box.
- Click Save to save the default admin user.
Ennov InSight License Components
The Ennov InSight components enable different organizational roles and functions within the regulatory lifecycle of a drug product. Each component focuses on one particular area of expertise and includes the ability to control access permissions within the component for specified users and groups.
By assigning access permissions to users or roles, you can enable some users to merely observe or access queries and summaries while enabling others to perform the daily operations of project management, research, planning, and publishing.
|
Available Components |
Description |
|
Ennov InSight Workflow Integration |
Enables you to utilize client-specific workflows that contain multiple activities, with dependencies and preset fields, that guide processes within the system. |
| xEVMPD | Enables you to capture, maintain, and submit data about pharmaceutical products to comply with the Extended EudraVigilance Medicinal Product Database (XEVMPD) directive. |
| IDMP | Enables you to capture, maintain and submit medicinal product data to comply with the extended IDMP functionality. |
|
Registration Planning and Tracking |
(RPT) enables you to plan registration activities and collect registration data without product formulation details. It improves affiliate communication, enables you to track the status of overall global product registration activities, and maintain product registration compliance. |
|
Product Detail Management |
(PDM) enables you to track product formulation and SPL exports. It also provides queries about where products are registered and other registration information. |
|
Submission Planning and Tracking |
(SPT) enables you to create, review and track submissions from planning to publishing. It also automates assembly creation and enables you to monitor the authoring process. |
|
Registered Document Analysis |
(RDA) leverages lifecycle submission information to enhance the DMS repository for better decision support based on usage information. It enables you to query for the external approval status of documents and to perform impact analysis of registered document changes. |
| Electronic Lifecycle Publishing | (ELP) simplifies eCTD creation and is required to publish assemblies as eCTD submissions. |
|
Available Components |
Description |
| Paper Review Publishing | (PRP) enables you to build assemblies for publishing to paper. PRP enables you to add paper elements such as TOCs, cover pages, overlays, and cross references to electronically published submissions suitable for generating study report submissions, hybrids, and other electronic submission formats. Using both the ELP and PRP licenses enables you to add these publishing elements to eCTD lifecycle submissions. Finally, PRP also enables you to publish an entire assembly to a single file electronically. |