Setting Security on Assets


Prerequisites:
  • User must have administrator permissions to set security.
  • User groups must exist. See Creating Groups for details.

Administrators can grant groups full or read-only access to individual assets.

If users have appropriate group permissions in addition to security settings, full access grants permissions to all asset actions, and read-only access grants only permissions to copy, publish, and view the asset.

Tip
Administrators can set node-level security via Properties > Security in the Edit toolbar or the Site Tree context menu. See Asset Security for details.
To set security on an asset:
  1. Navigate to Assets > Assets Tree.
  2. Right-click the asset in the Assets Tree and select Properties in the context menu.
  3. Click the Security tab.

    Asset Item Security via Site Tree Context Menu

  4. Choose one of the following steps:
    • Select the Inherit security settings from parent... checkbox to inherit the parent's security settings.
    • Clear the Inherit security settings from parent... checkbox. Click OK in the confirmation dialog.
      Additional Information
      If cleared, the asset item uses its own security settings rather than its parent settings. For example, the parent item may grant groups full access while the child grants groups read-only access, or vice-versa. You can configure the child's security settings per group to be less restrictive, more restrictive, or equal to its parent security.
      1. Optional: Select the Everyone user group. Click Remove.
        Note
        The Everyone user group overrides all other settings in Security.

        Remove Group

      2. Click Add. The Select Access Groups dialog displays.
      3. Select groups to add. Use CTRL+Click to multi-select groups.

        Add Group(s)

      4. Click OK. The selections display in the User Group list.

        Select Security Access Level

      5. Select one of the following options in each group's Security Access Level drop-down list.
        ItemDescription
        Read-OnlyGrants groups with appropriate permissions to only view, copy, and publish the asset item(s). Users can see the folder and its contents, and they can link to files within the folder. However, Read Only Access prevents users from using the New Folder, Upload, and Delete buttons within the folder.
        Full AccessGrants groups with appropriate permissions to perform all asset operations and edits. Groups can create, upload, and delete assets, provided that group permissions enable these options.
  5. Click OK.