cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Community Tip - You can subscribe to a forum, label or individual post and receive email notifications when someone posts a new topic or reply. Learn more! X

Data Access Control

Go to solution
Amirtharaj_K
15-Moonstone
15-Moonstone
‎Jul 04, 2023 02:10 AM
‎Jul 04, 2023 02:10 AM

Data Access Control

Hi Everyone,

 

I have 50 products in Windchill, here we can take 2 products in that team members are totally different (for example user only on that product not on another product) user is using the search method to find all the data. but he doesn't have access to that product he can view it all. So my question is whoever doesn't have that product access they're not able to view the data. How we can do it.

 

Regards,

Amir

 

Labels:
0 Kudos
Notify Moderator
ACCEPTED SOLUTION

Accepted Solutions
HelesicPetr
22-Sapphire I
22-Sapphire I
(To:Amirtharaj_K)
‎Jul 04, 2023 04:44 AM
‎Jul 04, 2023 04:44 AM

Hi @Amirtharaj_K 

First you need to understand How ACLs Work

 

Then you need to understand OOTB ACL definition About Default Access Control Policy Rules

 

The ACL rule what I am talking about is defined on Organization-PDM level

HelesicPetr_0-1688460175845.png

 

You can just remove this rule and define on all subcontexts or you can remove it and test if it is ok for your access definition.

 

Try it on the test server and you'll see if it is ok for your needs or not. 

 

PetrH

 

AVENG

View solution in original post

0 Kudos
Notify Moderator
4 REPLIES 4
buenosroas
13-Aquamarine
13-Aquamarine
(To:Amirtharaj_K)
‎Jul 04, 2023 03:34 AM
‎Jul 04, 2023 03:34 AM

Hi

 

I'm not entirely sure that I understand what you mean. Should users be able to see that data is present in contexts they do not have access to, but not be able to download content?

 

Please try to explain once more. 

 

In any case, if you can control access using groups instead of direct membership within contexts that will make access management easier for your admins. 

0 Kudos
Notify Moderator
HelesicPetr
22-Sapphire I
22-Sapphire I
(To:Amirtharaj_K)
‎Jul 04, 2023 03:39 AM
‎Jul 04, 2023 03:39 AM

Hi @Amirtharaj_K 

 

An ACL Definition and managing them is pain. . 

 

OOTB configuration is that user who is not part of product team, can not see data except Released one. 

The ACL definition for the object in the Released state is defined on the Organization level. 

 

If you do not want to allow others see data, then change that ACL rule on org level.

 

PetrH

AVENG
0 Kudos
Notify Moderator
Amirtharaj_K
15-Moonstone
15-Moonstone
(To:HelesicPetr)
‎Jul 04, 2023 04:30 AM
‎Jul 04, 2023 04:30 AM

Thank you for the reply Mr. Petr,

can you give me one example like the screenshot or video for this? 

As per my understanding, create a group to control in ACL to set a deny in read. am I correct?

 

Thanks,

Amir

0 Kudos
Notify Moderator
HelesicPetr
22-Sapphire I
22-Sapphire I
(To:Amirtharaj_K)
‎Jul 04, 2023 04:44 AM
‎Jul 04, 2023 04:44 AM

Hi @Amirtharaj_K 

First you need to understand How ACLs Work

 

Then you need to understand OOTB ACL definition About Default Access Control Policy Rules

 

The ACL rule what I am talking about is defined on Organization-PDM level

HelesicPetr_0-1688460175845.png

 

You can just remove this rule and define on all subcontexts or you can remove it and test if it is ok for your access definition.

 

Try it on the test server and you'll see if it is ok for your needs or not. 

 

PetrH

 

AVENG
0 Kudos
Notify Moderator
Announcements


Contact Community Management
Top Tags