ESPP Access Roles and Security Levels

When your company subscribes to the ESPP Employee Stock Purchase Plan application, there are three access roles that can be assigned to users. They are assigned according to the level of access needed to view and/or make changes in the system. The security level further controls access for either Read/Write or Read-Only privileges.

Every role accesses the system using the same production web address, https://em.certent.com/em, and one of the recommended browsers – Google Chrome (recommended) or Internet Explorer version 11.

Note: Your Certent implementation manager or support representative enables roles on a per-company basis. Your company security administrator assigns roles to users.

The information below describes the tasks users can perform when logged in with each role.

Users with this role have access to all functions in the ESPP menu. With the Read/Write security level, users can enter, edit, and delete records in the system. With Read-Only access, users can view all ESPP user interface pages but cannot enter new records, edit existing records, or delete records in the system.

Users with Read/Write security level can access the Reports menu tab to generate all ESPP reports in all formats and use Batch Reporting to create and run report batches. Users with Read-Only security level can run reports from the reports list page and run report batches that have already been created. They cannot add or delete report batches.

Users with Read/Write security level can access and generate all ESPP accounting reports and use Batch Reporting to create, run, and delete report batches. In addition, users can view the following in the Settings menu:

Users with Read-Only security level can run accounting reports from the reports list page and run report batches that have already been created for accounting reports. They cannot add or delete report batches.