B2C access control structure

The following diagram describes a basic B2C organization and access control structure.

Diagram described in following paragraph. This is a the legend for the above diagram.

In the preceding diagram, the root organization owns and subscribes to the default policy groups as described in Access control policies and policy group structure.

The consumer direct organization subscribes directly to the B2C access control policies, the management and administration policy group, and the common shopping policy group.

The consumer direct organization subscribes also owns and subscribes to the ConsumerDirect policy group. The ConsumerDirect policy group contains the following policy:


Since access control policy groups are subscribed by organizational entities, if you are creating multiple stores in your site and want to apply different access control policy groups to individual stores, you must create separate organizations to own each store.