Capabilities and Access Rights
Capabilities define the general access types which can be assigned to an administrator or an administrator group to access a specific object type and execute operations on it. They can be assigned to an administrator directly and via an administrator group of which he is a member.
The access rights to the individual objects of a specific type, such an individual operational rule or a report, are defined through the Security tab.
Tip: For faster searching, add an asterisk to the end of your partial query. Example: cert*