-
Navigate to the object
that you want to protect or make available.
-
On the object's
Authorization tab,
select a user or group. Or, if you want to assign a permission to
someone who is not listed, click
Add. Each
restricted identity that you add gets an explicit
grant of the ReadMetadata permission.
-
In the
Effective
Permissions list box, select check boxes to adjust the settings for the currently selected
identity. Each click adds an explicit control to the object's protections (except that clicking
an explicit
control removes that control and reveals an underlying
grant or denial).
-
Repeat steps 2 and 3
for any other identities whose access to this object you want to adjust.
-
Review the settings for each identity in the
Users and Groups list
box. This is important because settings that you add for a group can
affect access for all members of that group. For example, a denial
that you add for the PUBLIC group blocks access for all restricted
users, unless there are other explicit
or ACT
(green) grants. You must offset a broad explicit
denial with explicit or ACT grants for any restricted identities whose
access you want to preserve.
-
In the Properties dialog
box, click OK to save your changes.
Tip
It is easy to set explicit
grants and denials on each object that you want to protect or make
available. However, managing a large number of individual permission
settings can be cumbersome.
See Tips for Efficiently Using Permissions.