Network Deployment (Distributed operating systems), v8.0 > Secure applications and their environment > Secure Service integration > Secure service integration > Administer authorization permissions > Administer topic roles
Disable topic role inheritance
Service integration bus security uses role-based authorization. When messaging security, and topic level security are enabled, users and groups require access in the sender and receiver roles to access a topic in a publish/subscribe topic hierarchy. By default, topics inherit these roles from the parent topic. If you do not want topics to inherit topic roles from the parent topic in the topic hierarchy, you can override topic role inheritance by using the admin console. In this task you use the admin console to prevent a selected topic from inheriting authorization roles from its parent topic.
Procedure
- Log into the admin console.
- Click Service integration -> Buses -> security_value -> [Authorization Policy] Manage topic access roles -> topic_space_name > topic_name . The Topic access roles panel lists users and groups that have been assigned role types for the selected topic.
- Expand the topic name header to display details of the users and groups that have access one or more access roles for the selected topic.
- Clear the Inherit sender role from parent topic check box.
- Clear the Inherit receiver role from parent topic check box.
- Click OK to save your changes.
- Save your changes to the master configuration.
Results
The selected topic cannot inherit access roles from its parent topic. The Topic access roles panel displays the changed access roles for the selected topic.
Messaging security
Topic security
Related
Access role assignments for bus security resources
Determine topic role inheritance by using wsadmin