Handling account attributes

You can view the complete list of attributes that Bravura Security Fabric can manage, including native and pseudo-attributes, using the Manage the system (PSA) module. To do this, select Bravura Safe User Management from the Manage the system > Resources > Account attributes > Target system type menu.

The _accessLevel account attribute can be used (Connector Pack 4.7.0 or later) to set the access permissions for a user when adding users to a collection. This is accomplished using the group user add operation when adding members to a managed group. The default behavior when adding members can also be set using the "Default level of access when adding users to collections" target system address option.

The allowable values for the _accessLevel account attribute are Can view, Can edit, Can view, except passwords, and Can edit, except passwords.

Within Bravura Safe , users listed in which the permissions may be modified are the users that may be added or removed from the collection (or managed group within the Bravura Security Fabric instance) and therefore manipulated for the access level.

The users that are not editable in Bravura Safe for a collection's access permissions may not be modified from the Bravura Security Fabric instance for the access level. They are inherited global permissions that are generally set at the user level granting permissions to all collections and cannot be modified. While you can set individual permissions on the collection for users with an inherited global permission, the global one will still take precedence.

The _accessLevel account attribute can also only be used to set the access permission level and cannot be listed once it is set.