B2B direct access control structure
The following diagram describes a basic B2B direct business model and access control structure.
In the preceding diagram, the root organization owns and subscribes to the default policy groups.
The B2B organization subscribes directly to the B2B, management and administration, and the common shopping policy groups.
The B2B organization also owns and subscribes to the B2BDirect policy group. The B2BDirect policy group contains the following policies:
- AllUsersForB2BDirectExecuteB2BDirectAllUsersViews
- RegisteredCustomersForOrgForB2BDirectExecuteB2BDirectRegisteredCustomerViews
Registered customers are users that have the registered customer role in the B2B organization. These customers belong to the default organization. The default organization subscribes to the guest shopper management and management and administration policy groups.
Since access control policy groups are subscribed by organizational entities, if you are creating multiple stores in your site, and want to apply different access control policy groups to individual stores, create separate organizations to own each store.
Related Concepts
Authorization
Understanding access control
B2B direct business model
Related tasks
Customizing default access control policies
Define access control policy elements using XML
Implementing access control
Related Reference
Examples: Customizing access control policies using the Organization Administration Console