We’re trying the repository copy from R2 -> XI3, knowing that we need to redo security. I’m happy to do that, but am unclear on how to get rid of the “Advanced” rights that were copied over so I can start fresh. For example, I really want to grant our Administrators group Full Control (the predefined Access Level), but they’ve also inherited an “Advanced” set of rights, I presume from R2. How do I go about getting rid of that, so that just the Full Control right can win?
Do I need to create entirely new groups? Hoping not…
Thanks.
Adding later — Actually, I think what I’m asking is how to get rid of Granular rights, and just leave Full Control in place. When I look at the net rights for the group, it appears to be a combination of Full Control and Granular Rights.
Ok, I’ve figured out I can get rid of Granular rights one by one - is there no way to do this all at once, for a group or user relative to a folder or application?
In the CMC, right click on whatever you’re trying modify the rights for, pick User Security, click on the user or group whose rights you want to modify, and pick Assign Security. Click on the Advanced tab, then the link for Add/Remove Rights, and set everything to Not Specified.
There may be a faster way to do this (if so, someone please chime in), but I haven’t found it yet.
Ok, I understand I can’t do a bulk remove, but I’m thinking I ought to be able to use the Security Query in the CMC to see who has Advanced rights on what, but it seems to only let me query specific rights… is there a way to do it as the broader access level (e.g., Full Control, Advanced, etc)?
[And one other thing I just realized, belatedly – it’s far easier to removed the group or user from having any permissions (this takes away their Advanced permissions) and then re-add with an access level, rather than removing the Advanced rights one by one.]
(BOB member since 2002-06-07)