Creating the security model
You create a security model so that users can have different levels of privileges to objects in the Collaboration Server solution.
About this task
You can define roles based on the tasks that are performed by any user or set of users of the Collaboration Server system. For example, you can define roles to control a user's privileges to catalog management. You can set the privileges to the role and not to the user.
For example, you can define an Admin role for an administrator.
Each role can be assigned to multiple users. For example, the basic role can be assigned to user
1, user 2, and user 3.
Important: For a working security model, set the value of the
javaapi_security flag in the common.properties file to
true. The javaapi_security flag disables the secure mode for
any Java™ API invocation. By default, the value of the javaapi_security flag is
true. You can disable the security by setting the value of the
javaapi_security flag to false.
Procedure
- Create roles such as Admin and Basic.
- Create a user for each person who uses the Collaboration Server system.
- Create access control groups (ACGs) to group objects in ACGs so that you can provide access privileges for the objects to the users who belong to that ACG.
- Map objects to an ACG to group the objects in ACGs so that the objects inherit the access privileges of the ACG. Provide access privileges for the objects by providing the user with the access to the ACG.
- Grant group access privileges to roles such as the create and delete privileges for the Admin role.
- Grant system privileges to the roles such as the manager role so that the managers have privilege to modify other roles in the Collaboration Server system.
- Grant privileges to the user interface screens by role. For example, grant the Admin role privileges to all of the administration screens.