Select User Management > Security to display the console. The console allows you to set security access for users and roles to TIBCO Administrator consoles and applications, and to repositories in the Data Access folder. Members of the Super Users roles are also assigned in this console. Each console or application has a small key icon associated with it. The green icon indicates the currently logged in user can assign others access permissions for the corresponding console.
See also, Managing Access Rights for an introduction to Read, Write and Administer permissions.
For example, the next diagram shows Read and Write permissions are assigned to the TIBCO Administrator module for the Development role. An x displays in bold for TIBCO Administrator and in grey for all objects contained in TIBCO Administrator. A bold
x indicates permissions were assigned directly. Each grey x indicates the permissions were inherited, not assigned directly, or that the user is a member of a role for which permissions have been specified.
Data stored in the SYS_domain.dat file is referred to as the administration domain while data stored in the
AUTH_domain.dat file comprises the authorization domain. The authorization domain contains users, roles and data access ACLs. Everything else is stored in the administration domain: installed software, machines, applications, plugins, TIBCO Administrator ACLs, and so on. As such, the administration domain file is usually much larger than the authorization domain file.