After much gentle suggesting / begging from me (for almost 15 years), PTC tech support has published new article CS247524. We discussed many times in Windchill tech committee meetings but with no change resulting (I'm not very persuasive).
The set of properties referenced in the article were no doubt created with good intent (lots of years ago in Windchill 1.0), but in my humble opinion, have caused no end of chaos in hundreds of Windchill systems. I always null out these properties as part of any installation / other configuration.
The complete set of properties is (shown copied from our production system, with all values null):
The most important / dangerous one of these in my opinion is this:
When you apply Revise permission at a state, the system automatically also selects Modify permission at that state. Think about this. At Released for example, users have to Revise in order to make a change (e.g from A Released to B In Work). They would expect to do the modifications at B In Work. But, the system automatically also selects Modify at Released. What real business in the world has any user be able to Modify at Released?
I've shown this to many dozens of people over time, and most are amazed to see that it exists, and always carefully unselect in the Policy Admin UI what has been automatically selected, but others assume that what is automatically selected cannot be changed - and create really bizarre and complex policy sets because of it. In addition, since the UI (applet) doesn't show all the permissions unless you maximize, the system selects many that are off the screen.
In any case, this IDEA is a request to PTC to make all these properties null be default, rather than filled in, and allow admins to configure if desired.