Roles and Permissions¶
Overview¶
SUMS ERP controls access through roles. Each user is assigned one role; the role determines which menu items and actions (Add, Edit, Delete, View, Import, Export) are available.
Common personas¶
| Persona | Typical role | Main activities |
|---|---|---|
| Principal / Branch admin | Admin role with broad module access | Oversight, reports, configuration |
| Office / clerk | Admin staff role | Admission, fees, certificates |
| Accountant | Finance-focused role | Fees, vouchers, income/expense |
| Teacher | Faculty role | Attendance, marks, homework, LMS |
| Librarian | Library module role | Issue/return, reservations |
| Student | Student login | View attendance, fees, LMS, results |
| Super Admin | Platform admin | Schools, packages, global templates |
Permission types¶
For each module, roles may have:
| Right | Meaning |
|---|---|
| View | Open screens and reports |
| Add | Create new records |
| Edit | Modify existing records |
| Delete | Remove records (where allowed) |
| Import / Export | Bulk Excel import or export |
If a button is missing on a screen, you likely lack the corresponding right.
Module types¶
| Module type | Used by |
|---|---|
| 1 — Admin | Super Admin portal |
| 2 — School | School, Institute, College, Teacher portals |
| 3 — Student | Student portal |
Teacher vs school staff login¶
- School / Institute login — For non-faculty staff (office, admin).
- Teacher login — For employees marked as faculty. Teachers often see a reduced menu focused on their classes and subjects.
Using the wrong login type can hide expected menus even with a valid password.
Student access¶
Students log in with Student portal credentials. They cannot access staff modules (fee collection, admission edit, etc.). Parents may use student credentials where schools share one login per child.
Who configures roles?¶
School administrator or SUMS Super Admin configures:
- Role Master — Define role names
- Role Module Master — Assign modules and rights per role
- User Master — Assign users to roles
Changes take effect on next login (or immediately on next page load).
Best practices¶
- Follow least privilege: give staff only the modules they need.
- Use separate roles for cashier, admission clerk, and principal rather than one shared admin account.
- Review role assignments each academic year when staff change.
Troubleshooting¶
I cannot see a menu item my colleague has — Compare roles in User Master; request module access from your admin.
Teacher cannot mark attendance for a class — Verify teacher allocation to class/section and faculty flag on employee master.