Use these instructions to create, view, or modify roles.
To create roles:
Navigate to Administration > User Management > Roles .
The Roles page displays.
Do one of the following:
Select File > New > Role to create a role.
Select a group, then select View > Properties> Info to view or modify the properties of the role.
Enter or modify information on the Info tab of the New Role page or Role Properties page, as described in Table 4.9.
Click OK to save your changes.
Table 4.9. Role properties
| Field label | Value |
|---|---|
Name | The name of the repository role. |
Group Native Room | The native room for the role. The field appears only if the rooms feature of Collaborative Services is enabled. |
E-Mail Address | The email address for the new role. This is typically the email address of the role’s owner. If no value is entered in this field, the role email address defaults to the role name. |
Owner | The name of a repository user who has the Create Group privilege and who owns this role. |
Administrator | Specifies a user or group, in addition to a superuser or the role owner, who can modify the role. If this is null, only a superuser and the role owner can modify the role. |
Alias Set | The default alias set for the role. |
Role Is Global | If the role is being created in the governing repository of a federation, select to propagate the role’s attributes to all members of the federation. |
Description | A description of the role. |
Private | Defines whether the role is private. If not selected, the role is created as a public role. A role with Private enabled can be updated only by a user who is the owner of the role or is listed as the roll administrator. A role with Private not enabled can be updated by a user with system administrator privileges as well as by the role owner or administrator. A superuser can update any role, regardless if Private is enabled or not. By default, roles created by users with System Administration or superuser privileges are public, and roles created by users with a lower user privilege level are private. |
Create role as domain | Select to create a dm_group object with group_class as domain. This field only appears on the New Role - Info page. |
Dynamic | Indicates if the role a dynamic role. A dynamic role is a role whose list of members is considered a list of potential members. User membership is controlled on a session-by-session basis by the application at runtime. The members of a dynamic role comprise of the set of users who are allowed to use the role; but a session started by one of those users will behave as though it is not part of the role until it is specifically requested by the application. |
Protected | Indicates if the role is protected against adding or deleting members. Use of a protected dynamic role is limited to applications running with a DFC installation that has been configured as privileged through the Documentum Administrator client rights administration. The Protected checkbox is enabled only when Dynamic Role is selected. |