Resource Permissions portlet
The Resource Permissions portlet allows you to:
- Control whether or not a resource propagates or inherits its role assignments through the resource hierarchy.
- Assign roles explicitly to specific users and groups.
- Place resources under the control of an external security manager or bring externalized resources back under the control of WebSphere Portal.
- Create or delete roles on externalized resources.
- View inherited role assignments for specific users and groups.
See the Resource Permissions portlet help for detailed instructions on using this portlet.
There are three methods for accessing the Resource Permissions portlet:
- Click Administration
Access
Resource Permissions.
- Click Assign permissions in the banner.
- Click the Set Permission icon in the Manage Pages portlet.
Important: When you externalize the roles for a resource, any access control inheritence from internally controlled parent resources is severed. To prevent problems when this inheritance is severed, use the Resource Permissions portlet to explicitly assign at least one user or group to the Administrator role before externalizing any roles on the resource.
Failure to do so can cause the following problems:
- The resource is not visible in the resource Permissions portlet
- The resources cannot be reinternalized
- You cannot administer access control for the resource
Only explicitly assigned roles are externalized. Moving a resource externally without first explicitly assigning roles for the resource has the same result as externalizing an empty set of roles.
See also