The Performance Tracking (PT) application consists of two stand-alone applications, one for administrators and one for all other users (evaluators, auditors, and individuals). When it is necessary to differentiate between these two applications, this guide refers to them as the PT Admin application and the PT User application. Collectively, they are called the PT application.
Separate applications are necessary because the PT application uses two different security schemes. When a user logs on to the PT Admin application, the application uses the security of the Windows NT® Server or Windows® 2000 Server challenge/response mechanism. In contrast, the PT User application stores user names and passwords in its SQL Server™ database and compares these strings with the strings users type in the Logon dialog box.
The PT application is designed so that administrators cannot use the PT User application and nonadministrators cannot use the PT Admin application. An administrator can circumvent this rule by assuming the role of auditor for one or more groups. An auditor of a group has access to that group's information through the PT User application.
Note In this scenario, both the PT Admin and PT User applications were designed, but only the PT Admin application was implemented. In discussions that follow, detailed design and implementation information will be presented only for the PT Admin application. High-level design information will be presented for the PT User application as appropriate.