EasySpooler controls access to documents, destinations, and administrative functions by granting or denying access on the basis of the user (or the user group)a, the type of access requested and the destination requested. This access is defined by the roles and capabilities assigned to a user or group. For example, you may want to grant user jsmith permission to submit a document for processing to only a specific destination lp01.
Document permissions also influence access to documents. For example, if user jsmith has access to view the contents of documents on a destination, he may still not be able to see the contents of a specific document if the document permissions do not allow. For more information on document permissions see Override Document Permissions. This multilayered approach provides for precise and comprehensive security measures.
During installation, the EasySpooler administrator is automatically assigned the SeniorAdmin role, which has administrative privileges for EasySpooler as a whole. In addition, EasySpooler has two other predefined roles. The Admin role provides for a user who has administrative privileges for all or selected destinations. The User role includes limited capabilities.
Default permissions are set for users on trusted hosts whose permissions you have not defined in EasySpooler. You may find that the default permissions for users and the capabilities for the EasySpooler senior administrator meet your security needs. If so, you do not need to make any additions or changes to the security settings. Or you may want to start with these settings and consider changing them later.
To continue see Planning for Access Control.
a. EasySpooler access control works with users and groups already set up in your UNIX or Windows network