File Access Definition Example

The following example File Access Definition includes three types of access: a default, a restricted table (CUSTOMERS), and a restricted column (ORDERS.ORDER_ID). The roles specified in the example are part of the PSTUSER Access Control Domain (ACD). The ACD validates the roles and associates them with users in your network.

Default Access

For the first entry on the Table List, (Default), all roles and users, except the Guest role, are allowed to access tables in the Archive File that are not listed in Table List.

File Access Definition Editor dialog
  • In the Table List, the (Default) setting, for tables not listed, uses the Default AC Type. The Default AC Type assigns access permissions to the (Default) setting and any other tables that use Default.
  • In the Table Access Control list, the (Default) setting, for users not included in the ACD and roles not specified in the list, is assigned Allow access. The Guest role is assigned Deny access.

Restricted Table

For the CUSTOMERS table, only the Optim™ Administrator role is allowed access. All other users and roles are denied access.

File Access Definition Editor dialog - CUSTOMERS table selected
  • In the Table List, the AC Type for CUSTOMERS is Explicit. The access permissions apply to this table only.
  • In the Table Access Control list, the Optim Administrator role is assigned Allow access, and the (Default) setting, representing users not included in the ACD and roles not specified in the list, is assigned Deny access.

Restricted Column

For the ORDERS table, all users, except the Guest role, are allowed access, but one or more columns have separate access permissions, as indicated by Column Secured setting.

File Access Definition Editor - ORDERS table Column Secured check box selected
  • The AC Type for the ORDERS table is Default, which for this File Access Definition allows access to all users and roles except the Guest role.
  • The Column Secured setting indicates that one or more columns in the table have defined access permissions. To view a list of the secured columns, right-click the ORDERS row and select List Columns.

As shown by the Table Access Control dialog, the Default AC Type grants all users Allow access. All users that can access the table are allowed to access columns not specified in the Column List.

Table Access Control dialog

However, only the Optim Administrator role can access the ORDER_ID column. All other users and roles are denied access.

Table Access Control dialog - Optim Administrator allowed access to ORDER_ID column
  • In the Column List, the AC Type for ORDER_ID is Explicit. The access permissions apply to this column only.
  • In the Column Access Control list, the Optim Administrator role is assigned Allow access, and the (Default) setting, representing users not included in the ACD and roles not specified in the list, is assigned Deny access.


Feedback