Siebel Security Guide > Configuring Access Control > Access Control Mechanisms >

About Organization Access Control

When individual data can be associated with an organization, you can apply organization access control to the data by one or more of the following means:

• Single-organization access control. You can associate a single organization with individual data. For details, see About Single- and Multiple-Organization Access Control.
• Multiple-organization access control. You can associate multiple organizations with individual data. For details, see About Single- and Multiple-Organization Access Control.
• Suborganization access control. You can grant access concurrently to data associated with an organization and data associated with subordinate organizations in the organizational hierarchy. For details, see About Suborganization Access Control.

NOTE:  Siebel Assignment Manager is also organization-enabled; that is, assignment rules can use organization as a criterion.

A user is associated with one organization at any given time, the organization to which the user's active position belongs. For information about changing the active position of an employee or a partner user, see About Position Access Control.

A contact user is indirectly associated with an organization through the proxy employee specified for a Siebel customer application. For information about proxy employees, see Security Adapter Authentication and Seed Data.