Object Security

An object in the Optim™ Directory (for example, a Column Map or Archive Request) is secured by associating it with an Access Control List (ACL), which provides access permissions for the object. Secured objects are then protected by settings in the ACL if Object Security is enabled by the Security Administrator.

The status bar in an object editor and the Secured column in the Open dialog display the following icons to indicate if an object is secured by an ACL:

lock icon for secured objects
The object is secured by an ACL.
unlocked icon for unsecured objects
The object is not secured by an ACL.

When you print a secured object, the secured object icon is also displayed at the bottom of the report.

Editing Optim Object ACLs

You can modify the ACL for an object using the following commands available from the Tools menu in the object editor or the shortcut menu in the Open dialog:

Edit ACL
Open the Access Control List Editor. Use the editor to create an ACL for the object or to edit the existing ACL.
Delete ACL
Delete the ACL for the object.
Note:
  • This option is available for secured objects only.
  • This option is available only to users who have permission to delete the ACL for an object, or if the object is automatically secured when saved.

Object Security and Object Names

The size of the fully qualified name for a Primary Key and a Relationship is restricted when Object Security is enabled.

Other object names — such as those for Access Definitions, Table Maps, and Column Maps — are not affected by this restriction because their names do not exceed the above character limit.

Importing and Exporting Secured Objects

You must have read access to export a secured object. When you import automatically secured objects, the new ACLs are modeled after the Optim Object Template ACL. If the Optim Object Template ACL has not been defined, you must define an ACL for each object that requires an ACL.