How to create a new set of access control:
1. Create a new role. At orgadminconsole page, create a new role. The role name can be any string.
2. Create a new user, or choose existing user, to set this role. Then this user will have this role's access right.
3. Create a new access group if it doesnot exist.
Use default user access group policy xml file to create a new one. Do a query to find out the access group Id first, to ensure there is no conflict with current group.
At orgadminconsole, set this access group with the created role above.
4. Create a new access control policy xml file. The default access control xml can be a good template.
5. Load policies.
6. At orgadminconsole, subscribe the new policy for this organization or parent org.
7. At adminconsole, refresh registry to active the changes.
No comments:
Post a Comment