Privileges define the access permissions to administrators who are members of roles or groups that exist within a realm. Access Manager allows you to configure permissions for the following administrator types:
Realm administrators can perform all realm-related tasks, including defining identity repositories (data stores), configuring authentication, and defining policies.
Policy administrators can configure policies in existing realms.
The following privileges are supported:
Read and write access to all realm and policy properties. Defines read and write access privileges for realm administrators.
Read and write access for only policy properties. Defines read and write access privileges for policy administrators.
Combination of supported privileges: Read and write access only for policy properties and read only access to data stores. Other combinations of privileges are not supported.