Copyright © TIBCO Software Inc. All Rights Reserved
Copyright © TIBCO Software Inc. All Rights Reserved


Chapter 1 Introduction to Administration of Promotions : Security Issues

Security Issues
To administer promotions and manage change requests as a promotions administrator, your status must be one of the following:
With the @MANAGE_REQUESTS object set enabled, you can invoke the promotion administration functions. Enabling the @MANAGE_REQUESTS object set also prohibits other users from accessing the system and installation libraries, using the UNLOAD and LOAD tools, and initiating promotions.
Access Permissions
Enabling an object set results in the loss of access permissions that are assigned directly to user IDs and groups (and not through another enabled object set). To compensate for this, the following object sets should be enabled specifically for users who need access to the libraries and utilities:
For the group ALL, so that all users can read and execute rules in the system and installation libraries.
To apply and back out a change request, your user ID must have access permissions to all the objects included in that change request. For example, unless you have ownership privileges to an object, you cannot apply a change request that calls for its deletion. Only the object’s owner or the owner’s security administrator can apply the change request successfully.
Before attempting to apply a change request, the Promotion system ensures that you, the promotions administrator, meet all security requirements.
See Also
TIBCO Object Service Broker Managing Security for details on enabling object sets.
TIBCO Object Service Broker Shareable Tools about the LOAD and UNLOAD tools.

Copyright © TIBCO Software Inc. All Rights Reserved
Copyright © TIBCO Software Inc. All Rights Reserved