Admin - ACL: Assign user privileges through OpenEMR

• Click on Administration > ACL
• Click Edit to edit an existing user
• Two important concepts are ARO or Access Request Objects (the Group to whom access is granted) and ACO or Access Control Objects (functions to which access is being granted).

  If a practice has many groups of ARO's beyond the default, it may be easier to start with the Front Office because it has the most limited access. From that set of ACO's the practice can configure additional layers of ACO's.

• To edit a user's permissions click Administration > ACL.

  This will pull up the 'Access Control List Administration' page. By default, the checkbox next to 'User Memberships' should be selected, and you should see a list of all your users, with a blue 'Edit' link next to them.

  To add/remove a permission for a given user, hit 'edit' next to their name. this opens a window with two sides, and two buttons with arrows, for moving items from one side to the other.

  To add a permission, select it on the right hand 'Inactive' pane, and hit the '<<' button at the bottom of the window. The item will now be on the side labeled 'Active'.

  To remove a permission, select it on the left hand 'Active' pane, and hit the '>>' button at the bottom of the window. The item will now be on the side labeled 'Inactive'.