Specifying Whether Users See Administrative Labels' Names
The option to set a label view allows the security administrator role to determine whether the names for administrative labels are displayed to non-administrative users. Some reasons a site might hide the names of administrative labels are:
-
The site assigns each user a single label to work at and chooses not to train users about administrative labels
-
The site's security policy treats the names of administrative labels as classified information
Setting the label view mode to EXTERNAL hides the names, and setting the label view to INTERNAL allows the names to be seen.
External View
When the label view is set to be EXTERNAL:
-
The
ADMIN_LOWlabel or its site-specified equivalent name is not shown, and the minimum valid label of the same type is shown instead, and
-
The
ADMIN_HIGHlabel or its site-specific name equivalent is not shown and the maximum valid label of the same type is shown instead.
Note -Keep in mind that the binary label remains the same whichever view is specified and that the label view only determines whether the defined name of an administrative label is replaced by an alternative name when it is displayed.
The option for setting the default label only affects whether the name of another label is substituted for the name of either administrative label.
Internal View
The INTERNAL view allows users to see the names of the administrative labels, which are either the strings ADMIN_HIGH and ADMIN_LOW or their administratively-set alternate names. (If desired, see "Changing the Administrative Labels' Names".)
- © 2010, Oracle Corporation and/or its affiliates