Operations - Access Control
Specify permissions for each operation users are authorized to perform. The list of operations contains both custom static operations and nonstatic operations.
- Operations table
- Lists the operations that we can change. If we want all operations
to have the same permission, select the permission from the Select all permissions list. To sort the table by a specific column, click the arrow in the column heading. The table contains these columns:
- Operation
- Specifies an operation, such as add or modify.
- Permission
- Identifies the permission for the operation. Select a permission
from the list.
- Grant
- Permission is explicitly granted for performing the operation.
- Deny
- Permission is denied for performing the operation. Use the Deny selection sparingly, because an explicit denial overrides all other choices. Consider using the None selection instead of the Deny
selection.
Generally, if a user is granted permission to view or modify an attribute, the user can also see the attribute on the user interface even if read permission is denied. For example, if an access control item grants permission to define an access group, a member of the access control item can also view the access group list, regardless of whether the operation to view group members is granted or denied.
- None
- The permission is not granted or denied, which is interpreted as an implicit denial.
Click other tabs to specify additional information. Then, either click OK to save the changes or Apply to save your changes and continue.
Parent topic: Change Access Control Item
