Permissions by case type

Mesh supports granular access control at the case type level. Admins can configure which roles can access specific case types — for example, restricting transaction monitoring cases to a dedicated Transaction Monitoring team while giving a separate team access only to customer onboarding cases.

Who can do this: Only users with the Admin role can configure case type permissions.

Video walkthrough

How case type permissions work

Access to cases is controlled at the case type level. Admins assign case type permissions to roles, and each permission can be scoped to either view-only or view and update access.

• View — the role can see cases of that case type in the case list and open them.

• View and update — the role can see cases, take actions on them, and view all alerts within that case type.

Users whose role has no permissions for a given case type will not see it in their case list.

This means:

• A user assigned a role with view and update access to Transaction Monitoring can see and action TM cases, and view all alerts within them — but will not see customer onboarding or payment screening cases.

• A user whose role covers multiple case types will see all of them in the case list.

• Permissions apply to the case list, case view, and any bulk actions available for that case type.

Setting permissions for a case type

1. Go to Settings in the top navigation bar.
   

2. Select Roles and Permissions.
   

3. Select the role you want to configure, or create a new custom role.
   

4. Within the role, find the Case, Alerts and Risks section.
   

5. For each case type (Customer Screening, Customer Monitoring, Transaction Monitoring, Payment Screening), select the level of access:
   

   • No access — the role cannot see this case type.

   • View — the role can view cases of this type.

   • View and update — the role can view and take actions on cases of this type, and can see all alerts within them.

6. Click Save to apply the changes.
   

Changes take effect immediately. Users currently logged in need to refresh their session to see updated access.

Things to know

• Permissions are set per case type, within a role's configuration.

• If a user's role has no case type permissions, they will see an empty case list.

• Admin users always retain access to all case types.

• Custom roles give you the most flexibility for granular access control. See Creating and managing custom roles for more.

• For a full overview of the permission model, see System roles and permissions.

Related Articles

• System roles and permissions

• Creating and managing custom roles

• Managing users