There are several known limitations related to IBM Content Manager administrative domains.
Super domain users and super domain access are not supported in IBM Content Navigator.
The following list describes the known limitations that occur when you use super domains on your IBM Content Manager system.
- Users in a super domain cannot share a search with users in the default domain
IBM Content Navigator does not support super domain administrators querying for users or modifying security in IBM Content Navigator. Users in one domain cannot share a search with users in a different domain.
- Administrator cannot query for users in other domains or modify the folder and document security in IBM Content Navigator
IBM Content Navigator does not support super domain access. Additionally, item types with a default access control list (ACL) that contain users from multiple domains are not supported.
If the IBM Content Manager, V8 domain is enabled, the administrator cannot modify folder or document security if the Security page includes any users who belong to different domains. For example, the administrator cannot remove a user from an ACL and then save the ACL in the domain that a user could not previously access.
If administrators created users only in one domain when they designed the ACL, users in other domains are filtered out. Administrators can search or select users in that default domain but not modify security for the default domain. Administrators also cannot select users from any other domains.
If the administrator deleted all other users in all other domains, then the folder or document security for the default domain can be saved.
- Users cannot view or modify the security for an item if the ACL contains other users from a different domain
Item types with a default ACL that contain users from multiple domains are not supported.
Users cannot view or modify the security for an item if the ACL for an item belongs to a different domain and the user does not have permission to view other users in that domain.
If an ACL is added to multiple domains by the domain administrator and a nondomain user retrieves the ACL, an error occurs if the ACL data has users that are not in the same domain as the current user.