Using Content Platform Engine roles in Content Navigator document security

If you use role-based access in Content Platform Engine, you can add references in IBM® Content Navigator to the roles you create in Content Platform Engine. The roles are used for document and folder security.

For more information about Content Platform Engine role-based security, see a Configuring role-based access.

Important: To ensure that users can apply a role when they add a document, give those users the appropriate permissions to the role instance that you created in Content Platform Engine. Maintain an awareness of the permissions related with the role functions.
  1. If a User cannot see a role, either through the Add Role dialog, or the Roles in the Security tab in the various item properties views:
    • If users are not granted view permissions on the dynamic or static role instance class, they cannot view the roles in the UI.
      • If users cannot find the roles, they cannot add them to a document or a folder's security.
      • Be aware of when users are given permission to edit a document or folder's permissions, and they cannot view the roles that are assigned to the item's security. When the item's properties are saved, the roles that are not viewable to the user are removed!
  2. Normally, general users are not given access to class definition objects. Role access definitions are defined on role class definitions. If users do not have access to the role class definitions, then they cannot view the permissions in the role UI tooltip.
    • In the Security tab, these permissions are retrieved when users click the More info... link next to the role.
To enable the use of Content Platform Engine roles, complete the following steps:
  1. Enable role-based security by opening the IBM Content Navigator administration desktop.
  2. In the General tab, select the Allow users to configure role-based security in entry templates, documents and folders checkbox.
  3. Save your changes.
To select Content Platform Engine roles in an Entry Template:
  1. Go to the Entry Template Manager, select a repository, and create a new entry template.
  2. Enter the required entry template information. Then, scroll to Set the Item Security Section.
  3. Open the Roles tab. Click the Select button.
  4. Search for the roles that you previously created in Content Platform Engine.
  5. From the Available section, add the roles that you want to configure.
  6. Save your changes.
To select Content Platform Engine roles in a document or folder:
  1. Go to Browse and select a repository. Then, select Add document or Add folder
  2. Enter the required information, and scroll to the Security section.
  3. Open the Roles tab and click the Select button.
  4. Search for the roles that you previously created in Content Platform Engine.
  5. From the Available section, add the roles that you want to configure.
  6. Click Add to add your document or folder.

These roles are displayed in the document or folder properties view.