Skip to main content

Assigning read and write permissions

There must be at least one user group defined for Access to resource attributes before you can assign read and write permissions for a resource attribute group.

To add a user group to control access to resource attribute groups:

  1. Click Manage the system > Security > Access to resource groups.

  2. Click Add new…

  3. Type a unique ID and Description.

  4. Click Add.

  5. Select the Membership Criteria tab.

  6. Select or create user classes to define membership criteria.

Membership of non-built-in user classes can be cached to improve performance. There are options to recalculate or invalidate the cache on the user class configuration page.

Note

In a replicated environment, cache recalculation can only be performed on the instance which runs psupdate.

After you have defined user groups, you can assign read and write permissions for a resource attribute group, either from the User group information page, or the Resource attribute group definition page:

  1. Select the Access control tab.

  2. If required, search to refine the list of groups displayed on the page.

  3. Select Read and Write checkboxes as required.

    By default, the checkboxes indicate allowed permissions. If Bravura Security Fabric is configured to display Allow and Deny columns, ensure that you select checkboxes in the appropriate columns.

  4. Click Update.

If you require product administrators to be able to edit attributes, you must assign them both read and write permissions.

In this section: