Default access roles [Settings]

This pane shows the role type assignments for the default access.

To view this page in the console, click the following path:

Service integration -> Buses -> security_value -> [Authorization Policy] Manage default access roles.

security_value is either Enabled if messaging security is enabled, or Disabled if messaging security is not enabled.

This pane displays users and groups that have been assigned access roles for the default resource. Use this pane to add users and groups to the appropriate default role or roles, and to manage users and groups that have already been assigned role types for the default resource. Adding a user or group to any of the default roles grants the user or group the authorization permissions for that role for all the local destinations that are allowed to inherit defaults.

The information for each user and group is contained within a section that you can expand and collapse.

Expand/Collapse
Click to expand the section and display users and groups that have been assigned role types for the default resource.

General Properties

Select
A check box that you can use to select the users and groups for which you want to manage access roles.
Name
The name of the user or group that has an access role for the selected resource. If the user is a group member, the user ID and the group name is displayed.
Type
The type of the user or group. There are three types of user or group: user, group and member. A user that inherits its access roles from a group has the type member.
Sender
Whether a user, group or member is in the sender role for a selected resource.
Receiver
Whether a user, group or member is in the receiver role for a selected resource.
Browser
Whether a user, group or member is in the browser role for a selected resource.
Creator
Whether a user, group or member is in the creator role for a selected resource.

Security access roles

In the administrative console, access role icons are used to represent whether a user or a group is in a particular access role. You can click an icon to add or remove selected users and groups to a particular access role for a selected resource.

An access role icon has three states:
  • Access role type set.
  • Access role type not set.
  • Access role type inherited from group.
The following table describes how the access role icons represent these states, and how to change between them:
Table 1. Interacting with access role icons
Access role icon Access role assignment state User action
Role type not set icon. This icon is a clear box with a border.
 Role type not set. Click to change to role type set Role type set icon. This icon is a tick in a box..
Role type set icon. This icon is a tick in a box.
 Role type set. Click to change to role type not set. The icon changes to role type not set Role type not set icon. This icon is a clear box. if the user or group does not inherit access roles, or to role type inherited Role type inherited icon. This icon is an up arrow in a box. if the role type does inherit access roles.
Role type inherited icon. This icon is an up arrow in a box.
 Role type inherited from group. Click to change to role type set Role type set icon. This icon is a tick in a box..
Role type not set for a group icon. This icon is a clear box with the border greyed out.
 Role type not set for a group. The group to which a user belongs does not have a role type. Read only.
Role type set icon. This icon is a tick in a box with the border greyed out.
 Role type set for a group. The group to which a user belongs has a role type. Read only.
Role type not applicable icon. This icon is a cross in a box with the border greyed out.
 Role type not applicable. Read only.

Buttons

Button Description
Add Click to add users and groups to this resource.
Remove Click to remove selected users and groups from all the role types for this resource.