The following table lists the default security settings for an empty database installation. This includes the Security Policy and other hierarchy policies.
Object | Inheritance status | Inherited security rows Group/role: permission set | Security rows defined on object: Group/role: permission set | Security on object (summary) Group/role: permission set |
|---|---|---|---|---|
System security policy | - | - | Administrators - Administrative access Owners - Full - excluding data | Administrators - Administrative access Owners - Full - excluding data |
Security Policies | ||||
All objects' security policy except the ones specifically defined here |
| Administrators - Administrative access Owners - Full - excluding data |
| Administrators - Administrative access Owners - Full - excluding data |
Items & Portfolios security policy |
| Administrators - Administrative access Owners - Full - excluding data | Managers - | Administrators - Administrative access Owners - Full - excluding data Managers - Full Access |
Users security policy |
|
| Administrators - Administrative access Owners: Edit | Administrators - Administrative access Owners: Edit |
User groups security policy |
|
| Administrators - Administrative access Owners - Full - excluding data | Administrators - Administrative access Owners - Full - excluding data |
Modules security policy |
|
| Administrators - Custom (Admin permission only) | Administrators - Custom (Admin permission only) |
The option, Stop inheritance, is used primarily to protect the modules, users, and user groups from someone using the ALL option in the security policy.
Folders
The following table lists the folders hierarchy security requirements.
Object | Inheritance status | Inherited security rows Group/role: permission set | Security rows defined on object: Group/role: permission set | Security on object (summary) Group/role: permission set |
|---|---|---|---|---|
Client modules folder |
| Administrators - Custom (Admin permission only) | Administrators - Read | Administrators - Custom (Admin) Administrators - Read Total: Read + Admin |
Security modules folder |
| Administrators - Custom (Admin permission only) |
| Administrators - Custom (Admin permission only) |
Sever tools folder |
| Administrators - Custom (Admin permission only) | Administrators - Read | Administrators - Custom (Admin) Administrators - Read Total: Read + Admin |
Add-on Folder |
| Administrators - Custom (Admin permission only) |
| Administrators - Custom (Admin permission only) |
Modules
The following table lists the modules hierarchy security requirements.
Object | Inheritance status | Inherited security rows Group/role: permission set | Security rows defined on object: Group/role: permission set | Security on object (summary) Group/role: permission set |
|---|---|---|---|---|
Client Modules | ||||
Investor, Scorecard, Workbook, Form, To-Do, Forum, Setup |
| Administrators - Full access | All - Read | Administrators - Full access All - Read |
Admin, Knowledge Portal |
| Administrators - Full access |
| Administrators - Full access |
Security Modules | ||||
Always have admin permission on all objects |
| Administrators - Custom (Admin permission only) |
| Administrators - Custom (Admin) |
Create Import Categories |
| Administrators - Custom (Admin permission only) | Administrators - Read | Administrators - Custom (Admin) Administrators - Read |
Create Public Snapshots |
| Administrators - Custom (Admin permission only) |
| Administrators - Custom (Admin) |
Permit Functions to access all data |
| Administrators - Custom (Admin permission only) | All - Read | Administrators - Custom (Admin) All - Read |
Reset Permissions on all child objects |
| Administrators - Custom (Admin permission only) | Administrators - Read | Administrators - Custom (Admin) Administrators - Read |
Server Tools | ||||
All tools |
| Administrators - Full access |
| Administrators - Full access |
Add-on modules | ||||
Optimize |
| Administrators - Custom (Admin permission only) |
| Administrators - Custom (Admin) |