WAS v8.5 > Secure applications > Secure Service integration > Secure service integration > Administer authorization permissions > Administer topic rolesDisable topic role inheritance
Service integration bus security uses role-based authorization. When messaging security, and topic level security are enabled, users and groups require access in the sender and receiver roles to access a topic in a publish/subscribe topic hierarchy. By default, topics inherit these roles from the parent topic. If we do not want topics to inherit topic roles from the parent topic in the topic hierarchy, we can override topic role inheritance using the dmgr console.
In this task we use the dmgr console to prevent a selected topic from inheriting authorization roles from its parent topic.
- Log into the dmgr console.
- Click Service integration -> Buses -> security_value -> [Authorization Policy] Manage topic access roles -> topic_space_name > topic_name. The Topic access roles panel lists users and groups that have been assigned role types for the selected topic.
- Expand the topic name header to display details of the users and groups that have access one or more access roles for the selected topic.
- Clear the Inherit sender role from parent topic check box.
- Clear the Inherit receiver role from parent topic check box.
- Click OK to save your changes.
- Save your changes to the master configuration.
Results
The selected topic cannot inherit access roles from its parent topic. The Topic access roles panel displays the changed access roles for the selected topic.
Related concepts:
Messaging security
Topic security
Reference:
Access role assignments for bus security resources
Determine topic role inheritance using wsadmin
Related information:
List users and groups in topic roles
Add users and groups to topic roles
Remove users and groups from topic roles
Enable topic role inheritance