ATG Service security is based on the following elements:
Roles – Roles designate the set of rights that are assigned a user or a group
Organizational Roles – Organizational roles are specific to an organization. Status rights are granted to organizational roles to control who can view or modify solutions based on the solution owning group and solution status
Global Roles – Global roles work across all users and organizations, and can be used as a template role when creating organizational roles.
Owning Groups – An owning group for a solution is the group that owns that solution. The owning group designation on a solution controls who can view and modify that solution
Rights – Rights define what tasks the user can perform, for example viewing, modifying, approving solutions or accessing functionality like assigning recommended reading. There are two types of rights, access rights, and status rights. Access rights are rights that grant access to specific application functionality e.g. access to tabs, panels, ability to create solutions. Status rights control access to solutions based on solution status, for example, Right to View Solution in Content Review status
Secondary Organizations – Users can belong to more than one organization by becoming members of a secondary organization. This also allows them to have access to multiple organizational roles
Internal and External Users – Users are defined as being an External User (a customer) or an Internal User (an Agent).