Prevent Access Changes

Within User Access Configuration, access to objects is based on a hierarchical security model. The top of the hierarchy is the DOMAIN. All objects configured for access at this level are visible to all users in that domain. The most specific level contains items defined for an individual user and cannot be seen by other users. See User Access Configuration for details on the hierarchy.

Prevent Access Changes Check Box

In addition to defining the type of inheritance, administrators can also define objects at a given level as being the final level for access configuration. This allows administrators to prevent users from altering the behavior of the Oracle Transportation Management system and ensure a more consistent application behavior for all users.

For example, if you set up "action checks" for domain ABC and selected the "Prevent Access Changes" check box, then later you try to set up action checks at a more granular level by filling in the user ID field, you will get an error "Unable to edit security. It is locked down at Domain level for ABC".

So when "Prevent Access Changes" is checked, you should not be able to override it with a more specific user access, however, you should be able to change the one set up.

If there already exists configuration at a lower level, when "Prevent Access Changes" is checked at a higher level, configuration at the lower level in the hierarchy is ignored when "Prevent Access Changes" is checked at a higher level.