Dear collegues:
I have a question related to the Access control engine functionality.
I have always thought that when ACE is active, only the users belonging to ACE groups (defined by PFCG roles) would be able to see the system objects defined for these groups and its assigned rights.
But I have one big doubt: if a user don't belong to any ACE group, will he/she have full access to all objects or null access?.
I made some tests in my system with a user with no PFCG role assigment, and the conclusion I got is that this kind of users will have full access, can anyone confirm me this point?.
Thanks in advance.
Best regards.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.