Object-Level Security

Administrators can use object-level security to define granular object permissions to ensure accurate access for users.

Prerequisites

Privileges

You must have the Create Application Objects and Web use Access Management Editor privileges.

If you have the Bypass schema objects security access checks or Bypass all object security access checks privileges, you may be able to modify an object that you have Can View or Denied All security settings. This access is due to the bypass privileges.

Enable Manage Access

Ensure Manage Access is enabled in Application Components in Workstation:

For more information, see Grant Permissions and Manage Access for All Objects.

1. Open the Workstation window.

2. Connect to an environment.

3. In the Navigation pane, click Applications.

4. Right-click an application and choose Edit.

5. In the left pane, click Components.

6. Expand Share and toggle on Manage Access.

7. Click Save.

Define Object-Level Security

1. In the Mosaic model editor, click Security Options and Object-Level Security.

   This option is available after you save a model.

2. In the left pane, click the model, object, or folder.

3. If you chose a folder:

   1. Click Update Folder Item Security.

      

   2. Choose one of the following options:

      • Add Security to All Items in the Folder: Adds the newly defined security settings to existing settings.

      • Overwrite for All Items in the Folder: Replaces existing security settings with newly defined security settings.

   3. Click Apply.

4. In Full Control, Can Modify, Can View, Denied All, or Custom, click Add User/Group.

   Custom is only available for models. Hover your cursor over the user to display access details.

   

5. Select the check box next to the users or user groups.

6. Click Add.

7. Click Save.