Access control

An application is authorized to participate in a scenario only if the user ID under which it runs was assigned a role that provides the access rights that allow it to:

Participate in that type of transfer scenario
Use the requestor DN, signer DN, authoriser DN, and encryption DN that apply to the scenario
For a file transfer, access the file to be transferred

Similarly, a user is authorized to issue a command only if its user ID was assigned a role that provides the corresponding access right for that command.

You can use predefined or custom roles to provide a user ID with the necessary access rights. You can use wildcards to simplify the configuration of such roles.