1. Administration and security
  2. Administration
  3. Access Control
  4. Policies

A policy is a container for the privileges associated with a role.   Use the Policies tab to review the specific privileges granted to a role.

You must have either the Tenant Admin or View Admin role to access the Policies tab.

To view the policy for a specific role:

  1. In the Administration console, navigate to Access Control > Policies
  2. Select a policy.
    The policy details display.
The Policies tab with Tenant Admin Policy selected. The policy details display on the lower half of the screen.  The display shows the resources the role can create, read, update, or delete.

Policy Details

The policy details table displays the resources that a role with the associated policy can control.  The table includes:

Resource TypeCreateReadUpdateDelete

The type of resource associated with actions in the other columns.

Each role enables permissions for tenant configuration. Depending on the role, the policy enables certain Create Read Update Delete (CRUD) permissions in these areas:

  • Applications
  • History
  • Metadata
  • Models
  • Pages
  • Policies
  • Role Membership
  • Roles
  • Task
  • Users
  • Widgets
  • Work
  • Workflow Cycle
  • Workflow Process
  • Workspaces
The policy allows the role to create the resource type.  A green checkmark indicates the role can create the resource. A red x indicates the role cannot perform this action.The policy allows the role to view the resource type.  A green checkmark indicates the role can view the resource. A red x indicates the role cannot perform this action.The policy allows the role to update the resource type.  A green checkmark indicates the role can update the resource. A red x indicates the role cannot perform this action.The policy allows the role to delete the resource type.  A green checkmark indicates the role can delete the resource. A red x indicates the role cannot perform this action.