Secure Custom Subject Areas

You can secure a custom subject area by granting or revoking access rights from the role names that access the custom subject area. You can add or delete role names, or grant or revoke access rights from those role names.

You can also add role names from a predefined list and assign or revoke permissions.

Manage Role Names and Access Rights

While defining a custom subject area using the train stops, you can use the Actions list in the Configure Security step to manage role names and access rights as follows:

• Select and add role names for a custom subject area from a predefined list of role names. This predefined list also provides the description for each role name. You can also select and add multiple role names from this predefined list using either the Shift or Ctrl keys. After you add a new role name, you can select appropriate access for that role name.

• Select and delete role names listed for a custom subject area. You can also select and delete multiple role names using either the Shift or Ctrl keys.

  Note: You can't delete the role name listed as Everyone.

• Read access is granted by default to each role name you add. To revoke Read access from a listed role name, select No access for that role name.

Note: You can create custom subject areas even for the objects whose data you don't have access to. This way you build custom subject areas without compromising data security.