Специализированное администрирование > Обеспечение безопасности данных > Access Control > Examples of Required Access Control Rules > Permissions Required for Creating a Part in a Shared Cabinet
  
Permissions Required for Creating a Part in a Shared Cabinet
The following example illustrates the permissions that are needed to create a part in a shared cabinet or one of its folders. The permissions can be granted by either policy or ad hoc access control rules.
Creating a part in a folder requires the following permissions:
Read permission for the context and folder from which the part is created. Because the part is contained, Read permission is required to navigate to the context to launch the New Part action from the folder in the context.
Create permission for the part in the domain in which it is created (that is, the domain of the folder). Create permission is required because the part is access controlled.
Modify permission on the folder. Modify permission on the folder is required because the part is foldered and the folder content is being changed (adding the part to the folder).
In addition to these permissions, the user may also need permissions to other objects related to the part creation. For example, to select a view, a life cycle, or a team for the part, the user must have Read permission for the view, life cycle template, or team to be selected.