Tree View: Groups Right-Click Menu
Right-click on Groups in the tree view. The following menu is displayed.
New Group
When New Group is selected, the Group Editor window is displayed.
General Properties
The New Group General Properties are described in Table 147.
Table 147. Terminology: New Group General Properties
Term |
Meaning |
---|---|
Name |
Enter a meaningful name for the new Group. This field is mandatory – you will be unable to save the new Group until this field has been completed. Maximum 255 characters. |
Display name |
If required, enter an alternative name for the Group. Maximum 255 characters. |
Description |
If required, enter a description for the Group. Maximum 255 characters. |
Hidden |
When selected, the Group’s icon is dimmed when viewed by other Users with the correct access permissions. This feature will be utilised by future enhancements. When cleared, the Group can be viewed normally. |
Members
Selecting the Members tab enables you to change the members (Users and Groups) of the current Group.
Select one or more Users from the Users tab and one or more Groups from the Groups tab, as required, then click Add Member >>.
The selected Users and Groups are displayed in the Contains the following pane and are now members of the selected Group.
The members of a Group inherit Permissions and Access Control Lists set for that Group according to the inheritance calculations described earlier. See “Permissions Inheritance” and “Access Control Lists Inheritance”.
An item can be removed from the Contains the following list by selecting the item in the right- hand pane and clicking the << Remove Member button.
Note: It is not possible to Add Members to, or Remove Members from a Group whose Source is Active Directory.
Parents
Selecting the Parents tab enables you to change the Groups and Roles which are Parents of the current Group.
Select one or more Groups and/or Roles from the Roles and Groups tabs and click
Add to List >>.
The selected Groups and Roles are displayed in the Is inside the following Role and Groups pane and are now parents of the current Group (that is, the current Group is a member of the Groups and Roles displayed in the right-hand pane).
The members of a Group or Role inherit Permissions and Access Control Lists set for that Group according to the inheritance calculations described earlier. See “Permissions Inheritance” and “Access Control Lists Inheritance”.
An item can be removed from the Is inside the following Roles and Groups list by selecting the item in the right-hand pane and clicking the << Remove from List button.
Note: It is not possible to make a Group whose Source is Active Directory the Parent of the current Group.
Note: When adding Groups as Members to other Groups, ensure you are not attempting to make a Group both a Parent and a Member of another Group. If you do, the following error message will be displayed:
Permissions
Selecting the Permissions tab enables you to configure the functionality to which the members of the current Group are given access.
Select an item you want to configure, then click the Allow button to allow access to the selected functionality.
Deny button to prevent access to the selected functionality.
Inherit button to return the setting to the default.
The Permissions options are described in Table 148.
Table 148. Terminology: Group Permissions
Term |
Name |
||
---|---|---|---|
Attachments |
|||
Manage Attachments |
Controls whether members of the current Group have permission to create, edit and delete attached annotations in Searching Client – see “Attachments Toolbar”. |
||
Read Attachments |
Controls whether members of the current Group have permission to read attached annotations that have been attached to a document in Searching Client– see “Attachments Toolbar”. |
||
Automated Indexing |
|||
Manage Watched Folders |
Controls whether the members of the current Group have access to the Watched Folders Indexing functionality in Management Studio. |
||
Perform Automated Indexing |
Controls whether the members of the current Group have access to the Automated Indexing functionality in Management Studio. |
||
Configuration Options |
|||
Manage Configuration Options |
Controls whether the members of the current Group have access to the Configuration Options functionality in Management Studio. (Set to Allow by default.) When set to Allow, the members will be allowed to access and set up the various options under Configuration Options in the left-hand side tree view. When set to Deny, the members will not be shown the Configuration Options heading in the tree view and therefore will not be allowed to access and set up the various options. |
||
Data Definitions and Search Templates |
|||
Manage Custom Field Types |
Controls whether the members of the current Group have permission to create, edit and delete Custom Fields Types. When set to Allow, the members of the current Group have access to the Custom Field Types functionality in Management Studio. |
||
Manage Data Definitions |
Controls whether the members of the current Group have permission to create, edit and delete Data Definitions. When set to Allow, the members of the current Group have access to the Data Definitions functionality in Management Studio. |
||
Manage Index Assistants |
Controls whether the members of the current Group can configure Server-side Index Assistants. This includes running any Index Assistants via Automated Indexing from watched folders. |
||
Manage Search Assistants |
Controls whether the members of the current Group can configure Search Assistants. |
||
Manage Search Templates |
Controls whether the members of the current Group have permission to create, edit and delete Search Templates. When set to Allow, the members of the current Group have access to the Search Templates functionality in Management Studio. |
||
Manage Style Sheets |
Controls whether the members of the current Group have permission to create, edit and delete Style Sheets. When set to Allow, the members of the current Group have access to the Style Sheets functionality in Management Studio. |
||
Data Export |
|||
Copy Text Selections |
Controls whether the members of the current Group have permission to select Copy All or Copy Selection from the right- click menu in Searching Client. See “Right-Click Menu”. |
||
Export From Applications |
Controls whether the members of the current Group have permission to Export search results, Email search results and Copy search results. When set to Allow, the members of the current Group have access to the appropriate buttons in Searching Client. See “Export Search Results”, “Quick Export to Excel”, “Email Search Results” and “Copy Search Results” for descriptions of the button |
||
Print From Applications |
Controls whether the members of the current Group have permission to Print search results. When set to Allow, the members of the current Group have access to the appropriate button in Searching Client. See “Copy Search Results” for descriptions of the button |
||
Field Value Modification |
|||
Modify Field Values |
Controls whether the members of the current Group have permission to change Index Field Values in Searching Client. See “Modify Index Values” for more information. |
||
Full Text Indexing |
|||
Manage Full Text Indexing |
Controls whether the members of the current Group have permission to manage Full Text Indexing. See “Content Full Text Searchable” for the list of steps the Group members will be granted permission to manage, before Full Text Searching can be initiated in Searching Client. |
||
Resource Auditing |
|||
Manage Auditing |
Controls whether the members of the current Group have access to the Resource Auditing functionality in Management Studio. |
||
Retention Policies |
|||
Manage Retention Policies |
Controls whether members of the current Group have permission to create, edit and delete Retention Policies. When set to Allow, the Group members have access to the Data Retention functionality in Management Studio. |
||
Read Retention Policy |
Controls whether members of the current Group have permission to view Retention Policies. |
||
Reports |
|||
Manage Reports |
Controls whether the members of the current Group have permission to Manage Reports as described in “Reporting Services”. |
||
Read Reports |
Controls whether the members of the current Group have permission to Manage Reports as described in “Reporting Services”. |
||
Storage |
|||
Manage Storage |
Controls whether the members of the current Group have permission to create, edit and delete Storage Devices and Depots. When set to Allow, the members of the current Group have access to the Storage functionality in Management Studio.
|
||
View Storage |
Controls whether the members of the current Group have permission to view Storage Devices and Depots.
|
||
Users and Groups |
|||
Manage Application Licences |
Controls whether the members of the current Group have permission to change the Application Permissions of other users. See “Applications” on page 630 for more information on Application permissions. |
||
Manage Users & Groups |
Controls whether the members of the current Group have permission to create, edit and delete Users, Groups and Roles. When set to Allow, the members of the current Group have access to the Users and Groups functionality in Management Studio. |
||
Modify Own Password |
Controls whether the members of the current Group have permission to change their own password.
|
The Permissions configured for a Group might be superseded by the Permissions configured for other Groups, Roles or individual Users. See “Permissions Inheritance” for more information.
Save and Close Button
Click the Save and Close button to save the current Group and close the Group Editor window.
Save and New Button
Click the Save and New button to save the current Group and create a new Group in the Group Editor window.
Delete Group Button
Caution: Before deleting a Group, ensure there is no object (User, Group, Role or Data Definition) that can only be managed by this Group, as once deleted, these objects will no longer be able to be modified and may even be completely inaccessible (and in the case of a Data Definition, this would also apply to all the data that has been archived against it).
Click the Delete Group button to delete the current Group. When the Group has been successfully deleted you are asked whether you want to then create a new Group.
If you click Yes, a new Group is created in the Group Editor window. If you click No, the Group Editor window is closed.
Note: It is not possible to delete a Group whose Source is Active Directory. Only Groups created within Management Studio (Source: Manual) can be deleted.
Set Default Access for all new Groups
When Set Default Access For All New Groups is selected, the Access Control Security Configuration window is displayed.
This window enables you to set the Users, Groups and Roles which will be able to access any new Groups which are created.
A Group’s Access Control settings can be changed (by a User who has been given access to the Group) at any time. See “Control Access to this Group” for details on how to select the Users, Groups and Roles which will, by default, have access to new Groups.