on 2023 Jul 03 9:22 AM
Hello,
I have implemented Access Policy feature and it is working fine. The user is restricted to edit/download etc iflows mentioned in Access Policy.
But the issue is that user is able to Modify Access Policy itself. So ideally this query more towards the role collection given to user which needs to take a look at.
Any suggestions on which role collection (We are on CF) could be removed/not given to this user such that he still able to develop test etc in tenant but does not have edit access for Access Policy
Thank you so much for your valuable inputs on this!!
Thanks
Mugdha
Hello Mugda,
Access policy related roles are by default part of role collection IntegrationAdministrator .If developer has this admin role then he will be able to by default sit access policy.You need to create custom role collection and them provide only required roles(like accessPolicy)
Regards,
Sri
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hi Mugdha,
Only a "tenant administrator" persona can manage access policies. From what you say, the other user might also have the admin role. Please remove the admin role for that user.
Hope this helps.
- Karuna
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hi Mugdha,
You could try providing specific role templates such as WorkspacePackagesEdit.
Please refer below link for complete list of the role templates for Cloud Foundry:
https://help.sap.com/docs/cloud-integration/sap-cloud-integration/tasks-and-permissions?locale=en-US
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
User | Count |
---|---|
62 | |
12 | |
7 | |
7 | |
7 | |
6 | |
6 | |
5 | |
5 | |
4 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.