Initial Access Control Settings
The administrative user who installs WebSphere Portal has a default set of access rights.
Portal administrative user access rights
The installation creates a dedicated administrative user and corresponding administrative user group. By default the name of the administrative user group is wpsadmins. The following table describes the initial access control settings. A user always has the permissions that are associated with the User, Editor, and Privileged User role types on itself. There is no explicit role assignment for these permissions. They are a part of the administration policy.
User or Group Role The administrative user for each domain identified during the installation and configured in the Access Control Data Management Service. The administrative user has unlimited access on all resource in the corresponding domain. wpsadmins The administrative group for each domain identified during the installation and configured in the Access Control Data Management Service.
Same role mappings as the administrative user All Authenticated Portal Users User@ the following portlet applications: User@ the following Virtual Resouces:
- portletWiring Web Application
- Edit page content and layout
- Concrete Properties Web App
- appearance Web Application
- com.ibm.wps.portlets.palette
- com.ibm.wps.wp.spa.portlets
- com.ibm.wps.resolver.friendly.disambiguation
- Application Layout
- LotusNotesPortlet
- Manage Pages and Favorites App
- peopleFinderJSR168.1
- People Finder
- Organize Favorites
- View Group Members
Privileged User@ the following portlet applications:
- USERS
- USER_GROUPS
- PSE_SOURCES
- APPLICATION_FOLDERS
Privileged User@ the following portlets:
- Welcome
- Information Portlet Application
- wp.ap.selfcare
- Bookmarks
- com.ibm.lotus.search.portlets.SearchCenterPortletApplication
- com.ibm.wps.portlets.bookmarks.9730c9c350.web2
- Directory Search
- ReminderPortlet
- Banner Ad
- LotusNotesPortlet
- Microsoft Exchange2003
- Document_Viewer_Portlet
- IBM Common Mail Portlet
- IBM Common Calendar Portlet
- Personalization Editors
- Personalization Navigator
- Personalization Picker
- Personalized List
- Policy Status Application
- Search Admin Application
- ParamConfig Application
- Properties Portlet Application
- Roles Portlet Application
- Community Portlet Application
- Application Catalog Manager
- wp.ap.sitemap
User@ the following portlets:
- Directory Search
- Lotus Notes View
- Lotus Document Viewer
- Lotus Web Conferencing
- Sametime Contact List
- Who Is Here
User@ the following pages:
- Add to Sametime List
- Directory Search
- iNotes
- Dynamic Person Tag
- Lotus Notes View
- Sametime Contact List
- Who Is Here
Privileged User@ the following pages:
- Add to Sametime List
- Application Root
- Temporary Application Root
- Applications
- Application Membership
- Application Roles
- Banner Links
- Calendar
- Directory Search
- Lotus Notes
- Lotus Quickr
- Lotus Sametime
- Organize Favorites
- Page Customizer
- Page Properties
- People Finder
- Policy Status
- Quick Links
- Collapsed Quick Links Shelf Links
- Expanded Quick Links Shelf Links
- Explore
- Footer Links
- Groups Viewer
- Person Tag
- Theme Links
- Template and Application Layout
- Template and Application Properties
- Welcome
- Business Rules
- Collaboration
- Edit My Profile
- Search Seedlist
- Site Map
- Personalization
- Personalization Picker
- Personalized List
- Content Palette
- People Palette
- Search Center
- Document Search
- iNotes
- Home
- Quick Links
- Theme Links
- Site Map
- Messaging
Anonymous Portal User User@ the following portlet applications: User@ the following portlets: User@ the following pages:
- wp.ap.login
- wp.ap.selfcare
- wp.ap.sitemap
- IBM Common Mail Portlet
- Newsgroups
- Banner Ad
Editor@USER SELF ENROLLMENT
- Login
- Edit My Profile
Parent
Resources, roles, access rights, and initial access control settings