Administration Guide › Set Up Access Controls › Access Levels › Example: Access Levels with Multiple Rules and Specific Permissions on Protected Items

Example: Access Levels with Multiple Rules and Specific Permissions on Protected Items

Assume that access controls are set on, and that an item has the following access control rules (and that no other rules are set):

• Administrative user access level: modify permissions only are specified.

  This means that administrative users can perform modify operations. (This implicitly means that they can also perform read permissions.)

• Protected item access level: modify permissions only are specified.

  This means modify permissions are not allowed, but all other operations are allowed.

• Registered user access level: modify permissions only are specified

  This means that registered users can perform modify operations. (This implicitly means that they can also perform read permissions.)

For that item, within the scope of those rules, and for the users specified in those rules:

• The item is invisible to the public users.

  No access rule is specified, so public users have no access.

• Registered users can read the item.

  The registered users access level rule allows both modify and read operations, but the protected items rule disallows the modify operations.

• Administrative users can modify and read.

  The administrative users access level rule has a higher precedence than any protected items rule.

• Since there is no super user access rule, there are no super users.