There are three main SQL tables used by Aeries to implement security: 

• UGN – Stores information about Users and Groups
• UGA – Stores information about User and Group Memberships and Associations
• UGP – Stores information about permissions granted to Users and Groups

UGN Notes:

Substitute teacher and active directory substitute teacher accounts do not roll forward 

Accounts with a login date more than a year ago do not roll forward

UGA Notes:

UGA records roll forward as-is, excluding the records tied to any UGN records that did not roll forward

UGP Notes:

UGP records roll forward as-is, excluding the records tied to any UGN records that did not roll forward

There are security tabs for the Current Year, Last Year, and Before Last Year. The permissions are tied to the designated database/group of databases - NOT a specific academic year. 

Current Year permissions will always apply to the default database - after the rollover, the permissions automatically apply to the new Current Year. 

To give users access to prior year databases, permissions must be assigned on those additional tabs. If no permissions are specified for prior years, the user will only have access to the current year.

The permissions are stored in UGP. The UGP.YR field indicates the year to which that record applies

• UGP.YR = 0 - Current Year (1st tab)
• UGP.YR = 1 - Last Year (2nd tab)
• UGP.YR = 2 - Before Last Year (3rd tab)

Permissions are not tied to a calendar year and do not automatically roll forward as "read-only" permissions. If the Last Year/Before Last Year permissions were not set prior to the rollover, no Last Year/Before Last Year permissions will be in the new database.