|
Functional - Determines the actions that you can perform on types of objects, based on the roles that you belong to. Your organization defines these roles at implementation. Each role has a set of permissions that are associated with it that determine what actions a user who belongs to that role can perform. For example, if you are a user assigned a role that is called "Administrator", you might have permissions to map and delete system tables. If you are a user assigned a role that is called "Reviewer", you might be denied permissions to map and delete system tables.
|
|
Object - Defines the object types on which you can perform your allowed actions. In other words, even if you belong to a role that has general permissions to edit campaigns, object-level security for Campaign can be set up so that you cannot access campaigns that are in particular folders. For example, if you belong to Division A, regardless of your functional roles, you can be disallowed from accessing the contents of folders that belong to Division B.
|
Copyright IBM Corporation 2015. All Rights Reserved.
|