SIMS 7 - Permission Theory
The most common data exchange application for SIMS 7 from Technical Integrators takes the form of a scheduled task / service which is run on a server. Any application that needs to get data from SIMS 7 must use a user login set up in System Manager which has been granted the appropriate rights. The simplest model for this is to ask the school to create a service account for your application with a name which is indicative of the application and just the right number of permission grants to do the job.
To add a user choose the menu route System Manager | Manage Users
Click on New
The school needs to provide some indicative names for your company / application so that they can obviously see what the user account is for.
The click add to provide the required permission groups.
The set of permissions requested must be appropriate for the the service that the TI is providing, for example an HR system may have full access to staff data but the school / Group / LA should set alarm bells ringing if a request is made for pupil data access or system manager access for the HR System Service Account. The best advice to TI's is to select from the groups which are effectively roles and only select the minimum group. TIs should create users as described here and define and document their minimum viable user which usually helps customers to grant the access request whilst adhering to GDPR best practice.
Don't forget to save!
Windows Users are also supported which removes the need for entering passwords into TI systems which will be stored if this is required.