Home
Administration
Details on system administration tasks such as setup and maintenance of databases and add-ons, user accounts, access rights, and migration and update procedures.
Rights and permissions
PLA 3.0 provides the features you need to control access to your data in a sophisticated and compliant manner. It combines role-based user rights with resource-based permissions, which enables you to exercise fine-grained control over who can perform particular tasks in a given context and which tasks are allowed with particular data.

Get started
Explore PLA 3.0, its key features and ongoing enhancements. Learn how it fits into your environment, and how to log in and register.
User interface
PLA 3.0 supports you in your daily work by providing a set of graphical and textual user interface elements. Learn about the different elements and how to use them efficiently.
Key concepts
Details on documents and templates, the data editors and the Content editor of PLA 3.0.
Data analysis
Data analysis add-ons offer a wide range of capabilities, ranging from analytical methods over comprehensive analysis to statistical process control. PLA 3.0 also provides a set of add-ons that support and supplement data analysis add-ons.
Data import
Use data acquisition and data import add-ons to import external response values and observation data into PLA 3.0 for further processing and evaluation.
Installation
Details on the deployment and installation of licensed PLA 3.0 versions.
Licensing
Details on the licensing solution of PLA 3.0, the available licensing options, and the activation and management of licenses.
Administration
Details on system administration tasks such as setup and maintenance of databases and add-ons, user accounts, access rights, and migration and update procedures.
- Databases
  PLA 3.0 databases store all your data and also hold information such as user accounts, rights and permissions, signatures, and audit trail information. When logging in to PLA 3.0, users connect to a specific database, which sets their work environment for the session.
- Extensibility with add-ons
  PLA 3.0 consists of a framework and add-ons. The PLA 3.0 framework handles data as electronic documents. It provides the features you need to achieve regulatory compliance such as access control, data integrity, security, validation, and traceability.
- Rights and permissions
  PLA 3.0 provides the features you need to control access to your data in a sophisticated and compliant manner. It combines role-based user rights with resource-based permissions, which enables you to exercise fine-grained control over who can perform particular tasks in a given context and which tasks are allowed with particular data.
  - Account management
    Set up users, groups, and global roles. Use global roles to control who can perform particular database tasks such as setting up database policies or managing user sessions. Set up document roles and assign them to users and groups to define security contexts. Apply these security contexts to folders to control who can perform particular document tasks.
  - Folder properties
    Set up folder properties to restrict the content of folders to particular document types and to documents generated from particular document templates. Set the names of folders. Customize the identification key formats of folders and of the documents and templates they contain.
  - Directory service
    Use secure LDAP (LDAPS) directory services, such as Microsoft Active Directory Domain Services, to authenticate PLA 3.0 users. You map your PLA 3.0 groups, which have PLA 3.0 roles assigned, to user groups set up on a directory server. You cannot directly assign directory users to PLA 3.0 groups.
- Update, upgrade, and migrate
  Find details on how to update, upgrade or migrate your environment to work with the latest version of PLA 3.0.
Regulatory compliance
PLA 3.0 supports you in achieving compliance with regulations such as ISPE GAMP^® 5 and 21 CFR Part 11. It also provides options to validate PLA 3.0 in your environment.
PDF downloads
Download PDF guides of current and previous framework and add-on versions.
Sample lab
Meet the team of Stegmann Labs Inc. and use our sample laboratory to explore core features and functions of PLA 3.0.
Glossary
Find definitions of terms.

Rights and permissions

PLA 3.0 provides the features you need to control access to your data in a sophisticated and compliant manner. It combines role-based user rights with resource-based permissions, which enables you to exercise fine-grained control over who can perform particular tasks in a given context and which tasks are allowed with particular data.

Rights and permissions system in PLA 3.0 — Figure 1. Rights and permissions system in PLA 3.0

Account management

Use the account management feature of PLA 3.0 to set up users and groups directly in PLA 3.0 and assign global roles for database tasks such as setting up database policies or managing user sessions. The global roles you assign to users and groups are valid for the entire database.

Set up document roles for document tasks such as editing documents or applying electronic signatures. Assign document roles to users and groups to define security contexts, and apply these security contexts to folders or folder trees. Users and groups can be part of more than one security context. So, the document roles of a particular user or group can vary from folder to folder or from folder tree to folder tree. For details, see the Account management topic.

Folder properties

Use the folder properties feature of PLA 3.0 to assign security contexts to folders and restrict the content of particular folders to documents generated from particular document templates. For details, see the Folder properties topic.

Directory service

The directory service feature of PLA 3.0 allows you to use directory services based on secure LDAP (LDAPS: Lightweight Directory Access Protocol over SSL/ TLS). Instead of setting up users and groups directly in PLA 3.0, you map PLA 3.0 groups and their roles to user groups defined elsewhere on your network. For details, see the Directory service topic.