Security Role Policies
You can define policies for security roles. Along with role permissions, these policies also control what role members can do in Directory Manager.
You can define the following policies for a role:
- Group Owners Policy
- Group Name Prefixes
- New Object Policy
- Search Policy
- Authentication Policy for Security Roles
- Directory Manage Password Policy
- Netwrix Password Policy Enforcer Policies
- Helpdesk Policy
- Synchronize Policy
- Membership Object Type Enforcement Policy
NOTE: For users with multiple roles, the policies specified for the highest priority role apply (see Priority). The Search Policy, New Object Policy, and Group Name Prefixes policy, however, apply with respect to all assigned roles. For example, if different search containers are specified for two different roles of a user, that user can search and view objects in both containers. See the following topics for additional information on security roles: