Page tree
Skip to end of metadata
Go to start of metadata

The Permissions tab in a Portal Configuration enables you to view and edit permissions for IBM WebSphere Portal resources. For each resource, current permissions are displayed in the following boxes to the right of the resource list:

  • The Roles box displays current roles specified for the resource but does not display roles inherited from the parent of the resource.
  • The Assigned Users and Groups box displays a list of users and groups assigned to any selected role.
  • The Role Block box lists the role blocks defined for the resource. A role block prevents users and groups assigned the role from inheriting permissions from a parent resource.

To set the access controls for a Portal resource

  1. Select the Portal resource in the list.
    The Access Controls box below the list is updated with the attributes that affect how WebSphere Portal resolves permissions for the selected resource.
  2. Set or modify the following attributes, as necessary:

    Attribute

    Instructions

    Owner

    Define the user ID of the resource owner. If the Private check box is selected, you must specify the owner name.

    Authorization Level

    Specify the authorization level required for pages or portlets.

    Externalized

    For access control to be managed by an external security manager, such as IBM Tivoli Access Manager, select this check box. If this check box is not selected, access control is managed internally by WebSphere Portal.

    Private

    To limit access to the resource to the owner of the resource, select this check box. This setting affects the resource and all of its children.

To view and modify the permissions of a Portal resource

  1. Select a Portal resource in the list.
    The current permissions for the resource are displayed in the Roles, Assigned Users and Groups, and Role Blocks boxes.
  2. In the Roles box, perform any of the following actions to modify the list of roles associated with the Portal resource:
    • To add a role, click Add Role and select the role from the Add Role dialog box.
    • For any selected role, choose the action to perform on the role during installation — either Set (to set the permission) or Remove (to remove the permission).
  3. In the Assigned Users and Groups box, perform any of the following actions to modify the list of users and groups assigned to the selected role:
    • To assign a new user to the role, click Add User and select the user from the Add User dialog box.
    • To assign a new group to the role, click Add Group and select the group from the Add Group dialog box.
    • For any selected user or group, choose the action to perform on the user or group during installation — either Set (to set the permission) or Remove (to remove the permission).
  4. In the Role Block box, perform any of the following action to modify the list of role blocks for the resource:
    • To add a role block, click Add and select the role.
    • To remove a role block from the list, select the role and click Remove.
    • Choose one of the following options to characterize each role block:
      • None: Role block disabled. Use this option to override role blocks set in ancestors of the resource.
      • Inheritance: Prevent inheriting permissions for the role from the parent resource.
      • Propagation: Prevent propagating permissions for the role to descendants.