Previous Topic: Limitations on Using Access Control Rules

Next Topic: Example: Access Levels with Multiple Rules

Access Levels

Static access control rules have a hierarchy of precedence. When a DSA receives a request, the DSA tests whether to accept the request by using the applicable access control rule with the highest precedence, and ignores any other access control rules. The precedence levels are as follows:

  1. (Highest precedence) Super user access level.

    Rules at this level grant access rights that cannot be taken away.

  2. Administrative user access level.

    Rules at this level grant access rights that cannot be taken away.

  3. Protected items access level.

    Rules at this level deny access rights that have been given at a lower precedence.

  4. Registered user access level.

    Rules at this level grant access rights, but the rights can be taken away.

  5. (Lowest precedence) Public user (anonymous) access levels.

    Rules at this level grant access rights, but the rights can be taken away.


Copyright © 2009 CA. All rights reserved. Email CA about this topic