Creating the security model
You create a security model so that users can have different levels of privileges to objects in the Collaboration Server solution.
About this task
You can define roles based on the tasks performed by any user or set of users of the Collaboration Server system. For example, you can define roles to control a user's privileges to catalog management. You can set the privileges to the role and not to the user.
For example, you can define a Admin role for an administrator.
Each role can be assigned to multiple users. For example, the basic role can be assigned to user 1, user 2, and user 3.
Procedure
- Create roles such as Admin and Basic.
- Create a user for each person who will use the Collaboration Server system.
- Create access control groups (ACGs) to group objects in ACGs so that you can provide access privileges for the objects to the users who belong to that ACG.
- Map objects to an ACG to group the objects in an ACGs so that the objects inherit the access privileges of the ACG. You can provide access privileges for the objects by providing the user with the access to the ACG.
- Grant group access privileges to roles such as the create and delete privileges for the Admin role.
- Grant system privileges to the roles such as the manager role so that the managers have privilege to modify other roles in the Collaboration Server system.
- Grant privileges to the user interface screens by role. For example, grant the Admin role privileges to all of the administration screens.