To “execute” a workflow means to complete the steps that cause the first element in a given workflow to occur. For example, in ATG Content Administration, users execute a workflow by creating a project to which that workflow is assigned. When a user creates a project, ATG Content Administration checks to make sure the user has the proper access rights to execute the workflow associated with the project type. If the user does not have the proper privileges, the project is not created.

You assign workflow execution rights by user directory principal – in other words, you can assign this right to organizations, roles, profile groups, or individuals. For more information on user directory principals, see Working with the Dynamo User Directory.

Follow these steps to assign workflow execution rights:

  1. Open the workflow.

  2. Right-click the first element in the workflow and select Edit Details from the pop-up menu. The Workflow Attributes window opens.

  3. Click the Set Access Rights button. The Set Access Rights window opens.

  4. Uncheck the Use Default Security Policy Behavior checkbox, which indicates that no user access list has been specified and therefore that all users can execute the workflow.

  5. Click on Add to add a new principal to the access rights list. The Add Principal box opens.

  6. Select the type of principal you want to add:




    Gives workflow execution rights to all members of the specified organization.

    Note that a child organization automatically inherits the access rights of the parent organization. You can override the inherited rights by explicitly setting the access rights for the child organization. For more information about working with organizations, see the Setting Up Visitor Profiles chapter of ATG Personalization Guide for Business Users.


    Gives workflow execution rights to anyone assigned the specified role.


    Gives workflow execution rights to all members of the specified profile group.


    Gives workflow execution rights to the specified individuals (user profiles).

    You can list individual users according to the organizations to which they belong (List Individuals by Organization), or you can search for users that match certain criteria (List by Expression).

  7. Grant access rights to the principal you chose by checking the Execute access right in the list. To deny access rights, by clicking again so there is an X in the box. An empty box indicates that no user access rights are set.

  8. Click OK.

  9. Select File > Save to save your changes to the workflow.