Source: https://vaultcrmhelp.veeva.com/doc/Content/CRM_topics/Multichannel/ApprovedEmail/ConfiguringAE/AEConfigAdmins.htm

## Configuring Approved Email Admins and Integration Users

Some functionality requires additional configuration. This page includes configuration instructions for the following types of users:

* Approved Email Admin Users- Manage Approved Email processes and view analytics
* Content Admin Users - Create and locally test Approved Email content in Vault CRM and PromoMats/MedComms
* Integration Users - Accounts used to provide credentials for the Approved Email integration with PromoMats/MedComms (not a person)

### Configuring Approved Email for

[![Closed](../../../../../Skins/Default/Stylesheets/Images/transparent.gif)Admins, Content Admins, and Integration Users](#)

To configure Approved Email for admins, content admins and integration users:

1. Grant the following permissions:

   | Object | Object Permission | Object Types | Fields | Field Permission |
   | --- | --- | --- | --- | --- |
   | account\_\_v | R | n/a | * approved\_email\_opt\_type\_\_v * language\_\_v * restricted\_products\_\_v | Read |
   | approved\_document\_\_v | CRED | * case\_template\_\_v * email\_fragment\_\_v * email\_receipt\_\_v * email\_template\_\_v * engage\_\_v * medical\_inquiry\_template\_\_v | * allow\_any\_product\_fragment\_\_v * allowed\_document\_ids\_\_v * approved\_document\_status\_\_v * check\_consent\_\_v * content\_type\_\_v * detail\_group\_\_v * document\_description\_\_v * document\_host\_url\_\_v * document\_id\_\_v * document\_last\_mod\_datetime\_\_v * email\_allows\_documents\_\_v * email\_domain\_\_v * email\_fragment\_html\_file\_\_v * email\_from\_address\_\_v * email\_from\_name\_\_v * email\_html\_file\_\_v * email\_replyto\_address\_\_v * email\_replyto\_name\_\_v * email\_subject\_\_v * email\_template\_fragment\_document\_id\_\_v * email\_template\_fragment\_html\_file\_\_v * isi\_document\_id\_\_v * language\_\_v * name\_\_v * other\_document\_id\_list\_\_v * pi\_document\_id\_\_v * piece\_document\_id\_\_v * product\_\_v * publish\_method\_\_v * status\_\_v * territory\_\_v * vault\_document\_id\_\_v  This is the Field Name, not the Field Label. * vault\_instance\_id\_\_v | Edit |
   | * created\_by\_\_v * created\_date\_\_v * modified\_by\_\_v * modified\_date\_\_v | Read |
   | approved\_email\_settings\_\_v | R | n/a | All Fields | Read |
   | channel\_metrics\_\_v | R | email\_\_v | * account\_\_v * channel\_value\_\_v * channel\_source\_\_v * external\_id\_\_v * last\_email\_error\_date\_\_v * email\_delivery\_error\_\_v * email\_activity\_\_v | Read |
   | email\_activity\_\_v | CRE | * email\_activity\_\_v * vault\_activity\_\_v | * activity\_datetime\_\_v * approved\_document\_\_v * city\_\_v * click\_url\_\_v * client\_name\_\_v * client\_os\_\_v * client\_type\_\_v * country\_\_v * device\_type\_\_v * event\_msg\_\_v * event\_type\_\_v * ip\_address\_\_v * link\_name\_\_v * name\_\_v * object\_type\_\_v * region\_\_v * sent\_email\_\_v * user\_agent\_\_v * vault\_doc\_id\_\_v * vault\_document\_major\_version\_\_v * vault\_document\_minor\_version\_\_v * vault\_doc\_name\_\_v * vault\_document\_number\_\_v * vault\_document\_title\_\_v * vault\_instance\_id\_\_v | Edit |
   | * created\_by\_\_v * created\_date\_\_v * modified\_by\_\_v * modified\_date\_\_v | Read |
   | multichannel\_consent\_\_v | CRED | * approved\_email\_\_v * clm\_\_v * engage\_\_v * sample\_consent\_\_v | * account\_\_v * capture\_datetime\_\_v * channel\_source\_\_v * channel\_value\_\_v * detail\_group\_\_v * last\_device\_\_v * mobile\_id\_\_v * opt\_expiration\_date\_\_v * opt\_type\_\_v * optout\_event\_type\_\_v * product\_\_v * signature\_datetime\_\_v * signature\_id\_\_v * signature\_\_v | Edit |
   | * created\_by\_\_v * created\_date\_\_v * modified\_by\_\_v * modified\_date\_\_v | Read |
   | product\_\_v | CRED | n/a | * vexternal\_id\_\_v | Edit |
   | sent\_email\_\_v | CRE | * call\_\_v * clm\_\_v * email\_receipt\_\_v * events\_management\_\_v * medical\_event\_\_v * medical\_inquiry\_\_v | * call2\_\_v * email\_config\_values\_\_v * email\_config\_values\_file\_\_v * email\_content\_file\_\_v * email\_sent\_date\_\_v * failure\_msg\_\_v * last\_activity\_date\_\_v * list\_unsubscribe\_header\_v * related\_transaction\_id\_\_v * sent\_email\_status\_\_v * territory\_\_v | Edit |
   | * account\_email\_\_v * account\_\_v * approved\_email\_template\_\_v * capture\_datetime\_\_v * created\_by\_\_v * created\_date\_\_v * detail\_group\_\_v * email\_fragments\_\_v * email\_group\_id\_\_v * email\_source\_\_v * mc\_capture\_datetime\_\_v * mobile\_id\_\_v * modified\_by\_\_v * modified\_date\_\_v * object\_type\_\_v * ownerid\_\_v * product\_\_v * scheduled\_send\_datetime\_\_v * sender\_email\_\_v * subject\_\_v * valid\_consent\_exists\_\_v | Read |
   | sent\_fragment\_\_v | R | All applicable object types | * created\_by\_\_v * created\_date\_\_v * modified\_by\_\_v * modified\_date\_\_v | Read |
   | tsf\_\_v | R | n/a | * account\_\_v * allowed\_products\_\_v | Read |
   | user\_\_sys | R | n/a | * approved\_email\_admin\_\_v | Read |
   | user\_detail\_\_v | CRED | user\_detail\_\_v | * user\_\_v | Read |
   | veeva\_settings\_\_v | R | n/a | legacy\_org\_id\_\_v | Read |

   If [Dynamic Access Control](https://platform.veevavault.help/en/gr/33946/) is enabled for any of the objects leveraged by Approved Email, for example Sent Email, Email Activity, or Multichannel Consent, the Approved Email integration user should have All Object Record Read and All Object Record Edit permissions enabled.
2. Navigate to **Application** in the permission set.
3. Grant the administrator and the integration user access to **File Staging** in the Enable Access column.

   ![](../../../../Resources/Images/Multichannel/ApprovedEmail/Config/ae-config-file-staging.png)
4. Grant the administrator and the integration user **Access API** permission for the API action.
5. Navigate to the **Pages** tab in the permission set.
6. Grant the administrator and the integration user access to the following pages:

   * Approved Email Administration
   * CRM PL1 Generic Page
   * CRM PL3 Generic Page

     PL1 and PL3 are generic layouts used to render various pages across modules in Vault CRM.
7. Navigate to the **Tabs** tab in the permission set.
8. Grant the administrator and the integration user access to the **CRM Setup** Tab Collection.
9. Grant the administrator and the integration user access to the **Approved Email** tab.
10. Navigate to **Business Admin > Objects > user\_territory\_\_v**.
11. Create a user\_territory\_\_v record for the integration user and assign the integration user to the root territory in the vault. For more information, see [Viewing Territories in the Hierarchy](../../../TerritoryManagement/AssignAccts/CreateTerr.htm#Viewing).
12. Update the WHERE clause and verify users have read access to the modified\_date\_\_v field if the following VMOCs are enabled:
    * sent\_email\_\_v - WHERE account\_\_v IN (SELECT id FROM account\_\_vr) AND created\_date\_\_v >= LAST\_DAYS:90
    * sent\_fragment\_\_v - WHERE account\_\_v IN (SELECT id FROM account\_\_vr) AND created\_date\_\_v >= LAST\_DAYS:90
13. Ensure users have read access to the modified\_date\_\_v field on the channel\_metrics\_\_v object.
14. Grant Execute access to the **Send Email** action on the appropriate account\_\_v object types for testing purposes.

    The Send Email action does not control the ability Send Email on mobile devices. The action is displayed based on the user's permissions to the Sent Email and Multichannel Consent objects.
15. Add **iPad** as a selected value to the last\_device\_\_v field on the account\_\_v object type on the Sent Email object.

#### Designating Content Admins

An additional process is required to designate users as content admins:

1. Place the **approved\_email\_admin\_\_v** field on the appropriate user\_\_sys layouts.
2. Navigate to the appropriate user.
3. Select the Approved Email Admin checkbox.
4. Select **Save**.
5. Log in as the vault owner.
6. Navigate to **Admin > Users & Groups**.
7. Select the appropriate user.
8. Verify the user is granted **Full User** license to the Approved Email application in Vault CRM.

### Related Topics

[Approved Email Overview](../Overview.htm)
