Effective ACLs

When VersionVault enforces access controls in a VOB, it uses an effective ACL for each metatype.

The effective ACL is computed by combining the rolemap and its policy, substituting the role mappings in the rolemap for the role in the policy's access control entries. The net result is an ACL that has no indirect principals and is easy to interpret during an access check.

To view effective ACLs, right-click a VOB, element, policy, or rolemap and select Properties from the context menu, then click the ACLs tab.