In the Security Settings dialog box, define the following general permissions:
- Read &View: the right to view the existence of the object and read its properties, including Security Properties.
- There are three types of objects in the system:
- Folders, Items, Portfolios and Modules: On these objects it is possible to Deny Read & View and the object will then be hidden from a specific user's categories.
- Categories: It is possible to use Deny Read & View on a category, but this will not hide it. Instead it will deny access to some sensitive category properties such as the function definition. Note that even if you place a category in a folder which is itself hidden, users with access to, for example, a scorecard which includes that category will be able to view the category.
- All other objects: On all other objects it is not possible to Deny the Read & View right. Instead, these objects can be hidden by placing them in a folder which is itself hidden from the user.
- Edit - the right to edit the properties of the Object (excluding Security Properties).
- Remove - the right to delete the Object.
- Create - the right to create new Objects in a given Container.
- Admin: the right to read and edit Security Properties (and not any other properties or data) of the object.