If your site uses file synchronization to assist the visualization server in publishing viewables, a user (known as the file synchronization user) is specified in the agent worker authorization file (usually named auth.properties). This user is expected to have Read and Download permissions on all objects to be published. When security labels are enabled, only objects for which the file synchronization user is cleared can be published. For publishing to succeed, the file synchronization user must be an authorized participant for any non-null security label values set on the objects being published.

If adding the file synchronization user as an authorized participant on all security label values is a concern for your site, you can choose to disable file synchronization for publishing. When file synchronization is disabled, publishing is always executed based on the access of the user initiating the publish action.

For details on creating the auth.properties file and specifying the file synchronization user, see File Synchronization.