On the
Configuration > Topics tab, select the SAF
topic where you want to configure the security role.
On the
Security > Roles tab, select the topic
security role you want to configure.
Click Add Conditions.
Choose a
predicate from the list box. Typically, you will choose
Group. When a group is used to create a
security role, the security role can be granted to all members of the
group (that is, multiple users). Click
Next.
The next
steps depend on what you chose for your condition predicate.
If you selected Group or
User, enter one or more arguments that
define the group or groups that should hold this role and click
Finish.
If you selected a time-constrained predicate, such as
Access occurs between specified hours,
select start and end times and a GMT offset and click
Finish.
If desired,
repeat steps 8-10 to add expressions based on different role
conditions.
If
necessary, use the buttons in the Role Conditions section to modify
the expressions:
The
Move Up and Move
Down buttons change the ordering of the selected
expression.
The
Combine and
Uncombine buttons let you merge or unmerge
role conditions with the highlighted and and or statements between
expressions.
The Negate button
allows you to make a condition negative; for example,
NOT Group Operators excludes the Operators
group from the role.
The
Remove button deletes the selected
expression.
When all the
expressions in the Role Conditions section are correct, click
Save.
To activate these changes, in the Change Center of the Administration Console, click Activate Changes. Not all changes take effect immediately—some require a restart (see Use the Change Center).