The global security policy
Campaign includes a default global security policy that you can use as is or modify to suit the needs of your organization. If you choose not to create your own security policies, the global security policy is applied by default to the objects that you create in Campaign.
You can use the global policy in addition to your own policies, or use your own policies exclusively. You cannot delete the global policy, even if it is not in use.
Any security policies that you create exist under the global security policy. Under the global policy, you could create a separate security policy for employees of each division in your organization.
The global security policy contains six pre-defined roles; you can add roles to the global policy if needed. You cannot delete the pre-defined roles, but you can modify their permissions.
The pre-defined roles are:
*
Folder Owner - All permissions enabled
*
Owner - All permissions enabled
*
Admin - All permissions enabled. The default user asm_admin is assigned this role.
*
Execute - All permissions enabled
*
Design - Read and write permissions on most objects. Cannot schedule flowcharts or sessions.
*
Review - Read-only permissions
The global security policy applies to all users through the Owner and Folder Owner roles, including users who have not been assigned to any other specific role in the global policy. Because the global policy always applies, it can be used, for example, to globally deny permissions to a role.
Copyright IBM Corporation 2015. All Rights Reserved.