Permissions required for the new object store

When you create a new external object store, permissions are required for IBM® FileNet® Content Manager users to work with IBM Business Process Manager.

If you followed the instructions in Using a new object store, you have the correct permissions on the new external object store. However, if users are experiencing problems that indicate they do not have the right permissions, or if you add a user, use the following information to set the permissions correctly for the FileNet Content Manager administrative user and for all FileNet Content Manager users.

To work with IBM BPM, the administrative user requires these permissions:
  • CONNECT
  • MODIFY_OBJECTS
  • PRIVILEGED_WRITE
  • READ_ACL
  • REMOVE_OBJECTS
  • STORE_OBJECTS
  • WRITE_ACL
  • WRITE_ANY_OWNER

An access mask in FileNet Content Manager defines the operations that a user is allowed to use. The access mask corresponding to these permissions is 838205440.

In FileNet Content Manager, these permissions are found in the default Full Control permission group plus the PRIVILEGED_WRITE permission.

All other users require these permissions:

  • CONNECT
  • MODIFY_OBJECTS
  • REMOVE_OBJECTS
  • STORE_OBJECTS

An access mask in FileNet Content Manager defines the operations that a user is allowed to use. The access mask corresponding to these permissions is 15728640.

In FileNet Content Manager, these permissions are found in the default Use object store permission group.

Parent topic: Using a new object store