Restricting user access or view to import and export the console in WPC.

Technote (troubleshooting)


Problem(Abstract)

The client has stated that WPC is showing all the import jobs in the import console to users, as long as the users belong to the correct ACG groups that were set for those particular import jobs. Moreover, all export jobs can be seen by all users, as there is currently no restriction to which ACG group can view certain export jobs. Being able to view an import or export job can potentially mean that the user will have access to those import or export jobs. The client would like to have some sort of restrictions so that only users that belong to specific user roles can view certain import and export jobs, but not every single import and export job. For example, if both user_1 and user_2 belongs to ACG_A, despite the fact that both users have different user roles, both users can view all import jobs under ACG_A, and all export jobs there are (not just restricted to ACG_A).

Cause

This is the current design of WPC.

For import:

When creating the import rule, WPC will ask which ACG group can access this import job. All users whose user roles belong to this ACG will be able to view, or even access this import job.

For export:

There is currently no limitation as to which ACG group can view or access the export job. The export rule doesn't have a restriction on ACG access similar to that of the import rule.


Resolving the problem

This is not a WPC defect. It is working as designed.

The work around to this issue will require substantial re-planning of user vs user role vs ACG. Essentially, the administrator will have to create one user role for one particular ACG, instead of the current "several user roles in one ACG." Thus, there can be many users belonging to one user role, but there can only be one user role for one ACG. An alternate option is to have custom import and export scripts that check the user role when the user is accessing the import or export console. However, this type of customization scripting is not supported.

An enhancement request has been submitted to the WPC Product Management Team to determine if a "user role" can be added to the current WPC import rule, and the same type of import rule features for the export rule as well. No decision has been made on this issue currently.


Cross reference information
Segment Product Component Platform Version Edition
Information Management InfoSphere Master Data Management Server for Product Information Management AIX, Linux, Solaris 6.0, 9.0, 9.1
Information Management InfoSphere Master Data Management Collaboration Server AIX, Linux, Solaris 10.0

Product Alias/Synonym

MDMCS
Infosphere Master Data Management Collaboration Server
WPC
MDMPIM
MDM Server for PIM
WebSphere Product Center
InfoSphere MDM Server for PIM
InfoSphere Master Data Management Server for Product Information Management

Rate this page:

(0 users)Average rating

Document information


More support for:

WebSphere Product Center
Import/Export

Software version:

5.3.2

Operating system(s):

AIX, Linux, Solaris

Reference #:

1291907

Modified date:

2012-11-01

Translate my page

Machine Translation

Content navigation