Document Management security roles

IDM-User

This role is required for access to IDM user interfaces and APIs. It grants access to all documents without specific access control lists that prevent access for generic IDM-Users.

IDM-AdvancedUser

This role is for an advanced user with access to advanced tools such as mass update, mass delete, and export. Misuse of these tools can result in considerable damage if used by unskilled personnel. This role does not grant privileged access to any content. This role implicitly includes the IDM-User.

IDM-Administrator

This role is for a user who can create and alter document types and configure IDM. This role does not grant privileged access to any content. This role implicitly includes the IDM-AdvancedUser role.

IDM-SuperUser

This role provides full access to documents in IDM. Users with this role bypass the security model and have access to all content. Use with care since this user can access and edit any document in the system with no restrictions. Note that a user repository administrator can add people to this role. This role implicitly includes the IDM-User.

IDM-RelatedInformationUser

This role grants access to the Document Management Related Information contextual application. A user with this role is not granted access to other Document Management interfaces. This role does not affect access to content in Document Management, but the role can (as all roles can) be used in the Access Control Lists (ACL) to manage authorization (access to content/documents) within Document Management.