To increase security within an OnBase environment, it is vital to apply the principle of least privilege when assigning various rights and privileges to OnBase User Groups. The concept of least privilege refers to a policy of only providing access to the rights, privileges, and functions of the system that are required for users to complete their daily tasks.
Due to the complexity of many OnBase environments, users are often assigned additional rights for limited and specific circumstances, but those rights are never revoked after the need for them has been removed. System administrators should perform a full audit of user and User Group rights at least once every six months to ensure that the principle of least privilege is being enforced.