Modify the trust settings of any certificate in the Trust
Store
Certificate Read:
Read any certificate in the Trust Store
Certificate Write:
Add a certificate to the Trust Store
Component Add:
Install a new component in the system
Component Delete:
Delete any component in the system
Component Read:
Read any component in the system
Contentspace Administrator:
Permission for Contentspace (Deprecated) Administrator
Contentspace Console Login:
Permission for Contentspace (Deprecated) Console Login
Core Settings Control:
Manage the settings on the Core System Settings page in Administration
Console
CREATE_VERSION_PERM:
Create a new version of a service
Credential Modify:
Modify any signing credential in the Trust Store
Credential Read:
Read any signing credential in the Trust Store
Credential Write:
Add a signing credential to the Trust Store
CRL Modify:
Modify any CRL (Certificate Revocation List) in the Trust
Store
CRL Read:
Read any CRL in the Trust Store
CRL Write:
Add a CRL to the Trust Store
Delegate:
Set an ACL on a resource
DELETE_VERSION_PERM:
Delete a version of a service
Document Upload:
Upload documents in LiveCycle
Domain Control:
Create, delete, or modify settings for any User Management domain,
including its authentication and directory providers
Event Type Edit:
Edit to event types
Identity Impersonation Control:
Impersonate identity in User Manager
INVOKE_PERM:
Invoke all operations on a service
LCDS Data Model Control:
Read and deploy data models in Data Services
License Manager Update:
Update license information
MODIFY_CONFIG_PERM:
Modify the configuration of a service
TERM
Modify the version of a service
PDFGAdminPermission:
PDFG administrator
PDFGUserPermission:
PDFG user
PERM_DCTM_ADMIN:
Documentum Connector administrator
PERM_FILENET_ADMIN:
FileNet Connector administrator
PERM_FORMS_ADMIN:
Forms administrator
PERM_IBMCM_ADMIN:
IBM CM Connector administrator
PERM_OUTPUT_ADMIN:
Output administrator
PERM_READER_EXTENSIONS_WEB_APPLICATION:
Use the Reader Extensions web application
PERM_SP_ADMIN:
Manage SharePoint Connector settings
PERM_WORKSPACE_ADMIN:
Manage Workspace settings
PERM_WORKSPACE_USER:
Log in to the Workspace end-user application
Principal Control:
Manage users and groups for any domain, and manage role assignments
for all users and groups in any domain
Process Recording Read/Delete:
List and retrieve workflow audit instances
PROCESS_OWNER_PERM:
View trend data and perform administrative actions on a service
created from a process
Read:
Read the content of a resource
READ_PERM:
Read or view a service
Renew assertion:
Renew assertions in User Management
Repository Delegate:
Set an ACL on a resource
Repository Read:
Read the content of a resource
Repository Traverse:
Include a resource in a list resources request or read the metadata
of a resource
Repository Write:
Write repository metadata and content
Rights Management Change Policy Owner:
Change policy owner
Rights Management End User Console Login:
Log in to the Rights Management End User UI
Rights Management Manage Configuration:
Manage server configuration
Rights Management Manage Invited and Local Users:
Manage invited and local users
Rights Management Manage Policy Sets:
Manage all policies and documents within any policy set
Rights Management Policy Set Add Coordinator:
Add, remove, and change permissions for policy set coordinators
Rights Management Policy Set Create Policy:
Create a a new policy for a policy set
Rights Management Policy Set Delete Policy:
Remove a policy from a policy set
Rights Management Policy Set Edit Policy:
Edit a policy in a policy set
Rights Management Policy Set Manage Document Publisher:
When you create policy sets, you assign users the role of
document publisher. The document publisher is the user who protects
the document with a policy.
Rights Management Policy Set Remove Coordinator:
Remove a policy set coordinator from a policy set
Rights Management Policy Set Revoke Document:
Revoke access to documents in a policy set
Rights Management Policy Set Switch Policy:
Switch policies for a document
Rights Management Policy Set Unrevoke Document:
Unrevoke a document
Rights Management Policy Set View Event:
View policy and document events for any policy or document
within a policy set
Rights Management View Server Events:
Search and view all audit events
Role Control:
Create, delete, and modify roles in User Management
Service Activate:
Start any service, making it available for invocation
Service Add:
Deploy a new service to the service registry. This includes
adding new processes and process variants
Service Deactivate:
Stop any service in the system
Service Delete:
Delete any service in the system, including processes and process
variants
Service Invoke:
Invoke any service in the service registry available at runtime
Service Modify:
Modify the configuration properties of any service in the system.
This includes locking and unlocking a service in the IDE, and adding
or removing endpoints from a service
Service Read:
Read any services in the system. This includes all processes
and process variants
SERVICE_AGENT_PERM:
View data and interact with process instances for a service
created from a process
SERVICE_MANAGER_PERM:
Perform load balancing and other administrative actions on
a service created from a process
START_STOP_PERM:
Start or stop a service
SUPERVISOR_PERM:
View process instance data for a service created from a process
Traverse:
Include a resource in a list resources request or read the
metadata of a resource
Write:
Write repository metadata and content
Opening files in Workbench
To view the contents of the Resources
view in Workbench and open files for viewing, a user requires the
following permissions:
