Permissions overview
Permissions are the smallest unit of operational control assigned to roles. These fine-grained permissions allow an administrator to customize access control for users to meet the security requirements of any site.
There are three types of permissions based on context:
- Consumer-sensitive permission: This type of permission is only meaningful when it is associated with a consumer.
- Role-sensitive permission: This type of permission is tied to the assignment of roles, such as Role Assignment permission.
- Cluster-level permission: This type of permission is not relative to a consumer, such as View Entitlement permission.
A permission belongs to a group of permissions, such as Application, All Sessions, Cluster, and so on, and maps to one or more operations for that group; for example, the Application Control permission maps to two operations: disable and enable an application.