Configuration Guides › Policy Server Configuration Guide › Configure Security Policies from WSDL Files Using Applications › Modify the Default Role to Define User Access Rights

Modify the Default Role to Define User Access Rights

Roles associate resources with groups of users must be created.The Administrative UI creates a default role that allows no access when it secures web services from a WSDL file. You must modify this role to define a group of users that can access a resource to which the role is assigned.

To create a new role

1. Click Policies, Application, Modify Application.

   The Modify Application pane opens

2. Specify search criteria, and click Search.

   A list of applications that match the search criteria opens.

3. Select your application from the list, and click Select.

   The Modify Object: Name pane opens.

4. Click the Roles tab.
5. Click the Edit button beside the default role.
6. Ensure the Create a new object of type Role button is selected, and then click OK.

   The Modify Role pane opens.

7. Type an expression that defines the group of users that can access a resource to which the role is assigned in the Expression field or use the Expression Editor to complete. To access the Expression Editor, click Edit.

   Note: Click Help for descriptions of settings and controls, including their respective requirements and limits.

8. Click OK.

   The role is modified.