Role-based access control permissions

When you create a role template, you can specify the type of security access control that you want to have on an object type's folder structure for groups and users who are assigned to that role.

Note:

The file (SOXDocument) and link (SOXExternalDocument) object types have the same root storage folder path. As a result, you can configure only one set of ACLs for both these object types in a role.
Any new object types that are added to the system are excluded from all existing role templates.