Overview

ADDRESS_BOOK_MGR

Allows a user to perform address book service level operations.

ADDRESS_BOOK_USER

Allows a user to use the address book features.

ARCHIVE_MGR

Allows a user to perform archive service level operations.

AUDIT_ADMIN

Allows a user to create audit policies and enable/disable auditing on a specific container or user. A user with AUDIT_ADMIN can create audit trails by grabbing a set of audit records and archiving them.

Users with AUDIT_ADMIN do not have the privilege to actually look at the audit record as per the security requirement.

AUDITOR

Allows a user to look at and analyze an audit trail and corresponding audit records created by users with the AUDIT_ADMIN privilege. Usually, an auditor will be a legal person belonging to the legal department or government organization.

Users with AUDITOR do not have the privilege to create audit policies or enable/disable auditing.

BYPASS

Allows a user full access to all objects in the system and provides unlimited ability to perform any operation.

CALENDAR_MGR

Allows a user to perform calendar service level operations.

CALENDAR_USER

Allows a user to use the calendaring features.

CONF_MGR

Allows a user to perform conference service level operations.

CONF_USER

Allows a user to use the conferencing features.

CONTENT_MGR

Allows a user to perform content service level operations.

CONTENT_USER

Allows a user to use content features.

DELEGATE

Allows a user to delegate.

DIAGNOSE

Allows a user to perform diagnostic activities including reading all log files.

DM_MGR

Allows a user to perform Device Management service level operations.

EMAIL_MGR

Allows a user to perform email service level operations.

EMAIL_USER

Allows a user to use email features.

EXCEED_QUOTA

Allows a user to exceed any quota barriers that may prevent the user from completing an operation.

EXPERTISE_MGR

Allows a user to use manage Tacit.

FEED_MGR

Allows a user to create/update/delete Feed configurations.

FORUM_MGR

Allows a user to perform Forum service level operations.

FORUM_WRITER

Allows a user to write to Forum without write access

FORUM_USER

Allows a user to use the Forum features.

IM_MGR

Allows a user to perform IM service level operations.

IM_USER

Allows a user to use the IM features.

LOGIN

Allows a user to log into the system. Minimum privilege needed for a user to use the system non-anonymously.

MARKER_MGR

Allows a user to perform marker service level operations.

MODIFY_ACL

Allows a user to modify the LACL, Sensitivity and Owner attributes of an object.

NOTIFICATION_MGR

Allows a user to perform notification service level operations.

NOTIFICATION_USER

Allows a user to use notification features.

ORGANIZATION_MGR

Allows a user to manage organizations.

POLICY_MGR

Allows a user to create and modify policies.

PREFERENCE_MGR

Allows a user to manage preferences.

PROTOCOL_USER

Allows a user to access the system via the standards-based protocols.

QUOTA_MGR

Allows a user to perform quota service level operations.

READALL

Allows a user to read any object.

RECORDS_MGR

Allows a user to perform recordization operations.

RESOURCE_MGR

Allows management of resources.

ROLE_MGR

Allows a user to create and modify roles.

S2S

Allows a Service to be Provisioned.

SECURITY

Allows a user to perform any security related operations. Covers MODIFY_ACL.

SHARED_LABEL_MODIFIER

Allows a user to modify shared labels.

SUBSCRIPTION_MGR

Allows a user to perform subscription service level operations.

SUBSCRIPTION_USER

Allows a user to use subscription features.

SYSTEM_MONITOR

Allows a user to view system configuration and monitor system performance but does not allow any operation which changes system behavior.

SYSTEM_OPER

Allows a user to view and alter system configuration and monitor system performance and allows all operations which can change system behavior.

TASK_MGR

Allows a user to manage tasks.

TASK_USER

Allows a user to use the task features.

TIMEZONE_MGR

Allows management of timezones.

USER_MGR

Allows a user to manage users and groups.

VERSION_MGR

Allows a user to perform version service level operations.

VOICE_USER

Allows a user to use the voice features.

WEBADMIN_USER

Allows a user to use Beekeeper.

WIKI_USER

Allows a user to use Wiki.

WIKI_MGR

Allows a user to manage Wikis.

WORKFLOW_MGR

Allows a user to manage workflows.

WORKFLOWTASK_MGR

Allows a user to manage tasks associated with workflows.

WORKSPACE_ADD

Allows a user to add team workspaces.

WORKSPACE_MGR

Allows a user to manage a workspace.