Managing Access Control Lists |
| This topic describes the concept of Access Control List. |
|
Access Control Lists (ACLs) play a vital role in all administrative activities of Process Platform. An ACL defines permissions for who is allowed to see what information. An ACL is used to control access over secure Process Platform objects. It is not desirable for all users to have access to all objects in Process Platform. Hence, access to certain objects is restricted to specific users in various organizations. If ACL is not set, all users can access these objects by default.
ACL is meant for authorization and not for authentication. Hence, ACL settings can be configured for users and roles within an organization, but cannot be configured for authenticated users. The ACL setting is of two types, unconditional ACL and conditional ACL.
The ACL settings in Process Platform allow defining all the ACL objects in a single tree for a particular user or role. Refer ACL definitions for more information.
Process Platform provides default ACL settings for roles, users, service containers, XML store objects and LDAP objects. Apart from these, an administrator can change ACL entries or set ACL settings for these items at the organization level. Administrators can set an access control list on the basis of ACL parameters.
ACL can be set at the following levels: