Security Role Policies

You can define policies for security roles. Along with role permissions, these policies also control what role members can do in GroupID.

You can define the following policies for a role:

• Group Owners Policy
• Group Name Prefixes Policy
• New Object Policy
• Search Policy
• Authentication Policy
• Password Policy
• Helpdesk Policy
• Synchronize Policy
• Query Designer Policy

In this way, you can create security roles with varying degrees of policy restrictions.

NOTE: For users with multiple roles, the policies specified for the highest priority role apply (see Priority). The Search policy, New Object policy, and Group Name Prefixes policy, however, apply with respect to all assigned roles. For example, if different search containers are specified for two different roles of a user, that user can search and view objects in both containers.

See Also

• Security Roles
• Create a Security Role
• Manage Security Roles
• Group Owners Policy
• Set Group Name Prefixes
• New Object Policy
• Search Policy
• Authentication Policy for Security Roles
• Set a Password Policy
• Helpdesk Policy
• Synchronize Policy
• Query Designer Policy