Access to Cabinets
Access control rules that apply to the cabinet (based on the domain it belongs to) do not extend to the objects located within that cabinet and its folders. For example, assume that user Bill Smith has Read permission for Cabinet type in domain X. However, having Read permission to cabinets does not give Bill Smith read access to documents in a cabinet. There must be an additional access control rule defined for documents that provides the Read permission.
Also, consider the following example:
• User Bill Smith does not have Read permission for the Cabinet type in domain X.
• He does have Read permission for the Requirements type, a subtype of WTDocument, in domain X.
• Consequently, Bill Smith can search for and find Requirements documents that reside in domain X. However, because he does not have read access to the cabinet itself, he cannot see the cabinet or any of its contents through the Folders window.
As illustrated by this example, it is important that you create logical rules that provide users with the access they need.