Restricting user access or view to import and export the console in WPC.
The client has stated that WPC is showing all the import jobs in the import console to users, as long as the users belong to the correct ACG groups that were set for those particular import jobs. Moreover, all export jobs can be seen by all users, as there is currently no restriction to which ACG group can view certain export jobs. Being able to view an import or export job can potentially mean that the user will have access to those import or export jobs. The client would like to have some sort of restrictions so that only users that belong to specific user roles can view certain import and export jobs, but not every single import and export job. For example, if both user_1 and user_2 belongs to ACG_A, despite the fact that both users have different user roles, both users can view all import jobs under ACG_A, and all export jobs there are (not just restricted to ACG_A).
This is the current design of WPC.
When creating the import rule, WPC will ask which ACG group can access this import job. All users whose user roles belong to this ACG will be able to view, or even access this import job.
There is currently no limitation as to which ACG group can view or access the export job. The export rule doesn't have a restriction on ACG access similar to that of the import rule.
Resolving the problem
This is not a WPC defect. It is working as designed.
The work around to this issue will require substantial re-planning of user vs user role vs ACG. Essentially, the administrator will have to create one user role for one particular ACG, instead of the current "several user roles in one ACG." Thus, there can be many users belonging to one user role, but there can only be one user role for one ACG. An alternate option is to have custom import and export scripts that check the user role when the user is accessing the import or export console. However, this type of customization scripting is not supported.
An enhancement request has been submitted to the WPC Product Management Team to determine if a "user role" can be added to the current WPC import rule, and the same type of import rule features for the export rule as well. No decision has been made on this issue currently.
|Information Management||InfoSphere Master Data Management Server for Product Information Management||AIX, Linux, Solaris||6.0, 9.0, 9.1|
|Information Management||InfoSphere Master Data Management Collaboration Server||AIX, Linux, Solaris||10.0|
Infosphere Master Data Management Collaboration Server
MDM Server for PIM
WebSphere Product Center
InfoSphere MDM Server for PIM
InfoSphere Master Data Management Server for Product Information Management
More support for:
WebSphere Product Center
Software version: 5.3.2
Operating system(s): AIX, Linux, Solaris
Reference #: 1291907
Modified date: 01 November 2012