The Investigation Management module in Serenity uses a role-based access model to control who can create, view, contribute to, manage, and close investigations. This ensures that sensitive investigations are accessible only to authorized users and that the process remains secure and auditable.
Default Access
By Default, users can only participate in investigations that they are explicitly assigned to. :
Licensed Roles for Investigation Management
In addition to default access, the following roles are in place that can allow expanded access to the investigation management application
Investigation User (x_sehs_core.investigation_user)
Can launch new investigations
Can view and contribute to:
All open investigations in the system
All previously closed investigations
Investigation Manager (x_sehs_core.investigation_manager)
Inherits all Investigation User permissions
Can reopen closed investigations
Ideal for site leads or regional EHS staff overseeing multiple investigations
Investigation Admin (x_sehs_core.investigation_admin)
Inherits all Investigation Manager permissions
Can delete investigations and all associated records
Can configure investigation settings
Role Inheritance from Incident Management
Serenity simplifies access management by tying Investigation roles directly to the roles used in the Incident Management module:
This means that if a user already has one of the incident management roles, they automatically gain the corresponding investigation access—no additional setup needed.