Basics

In the context of DSM 2022.2, access permissions are modeled as a triplet of Role, User and Context, i. e. a Role is valid for a certain User in a certain Context. The Context is a single object from the Organizational Directory - a Computer for instance - or it is a container object.


Permissions are inherited 'downwards' the Organizational Directory. 


Roles are sets of Permissions, they are just a way to bundle several Permissions and grant or revoke them in a convenient, that is a single step, manner. 


Permission objects define basic jobs or basic activities, that will be allowed to perform after assigning the appropriate permission to a User and a Context. A variety of Permissions is delivered with the DSM 2022.2 installation. Starting with DSM 7, it is possible to create new tasks, that are used in conjunction with User-Defined Tasks. Further details of the implemented permission model are beyond this documentation and can be looked up in the DSM 2022.2 product documentation.