A user group policy contains rules that consist of:

  • Permissions, which define access at the data level (on assets, content, or any data from another entity definition) or at the interface level (pages). They determine what a user can see or do. Permissions are defined on a target entity definition and are always positive. You cannot deny permissions using user group policies.

  • Conditions, which determine how the permissions are applied and on which entities. Using conditions, you can apply permissions to specific entities in the entity definition instead of to the entire entity definition.


For further advice about assigning user permissions, refer to the Security best practices.

Do you have some feedback for us?

If you have suggestions for improving this article,