internal authorization, you can assign privileges to roles.
You can assign the following privileges to roles:
Read
User can view but not change data.
Create
User can create data records in the
Hub Store
Update
User can update data records in the
Hub Store
.
Delete
User can delete data records in the
Hub Store
.
Merge
User can merge and unmerge data.
Execute
User can run cleanse functions and batch groups.
Privileges determine the access that external application users have to
MDM Hub
resources. For example, you can configure a role to have read, create, update, and merge privileges on particular packages.
Each privilege is distinct and must be explicitly assigned. Privileges do not aggregate other privileges. For example, a user who has update access to a resource does not necessarily have read access to it. Both privileges must be individually assigned.
When you use the
Hub Console
, privileges are not enforced although the settings still affect the use of the
Hub Console
. For example, data stewards cannot view any packages in the
Merge Manager
and
Data Manager
except those for which they have read privileges. For data stewards to edit and save changes to data in a particular package, they must have update and create privileges for that package.
If data stewards do not have update or create privileges, then they cannot change any data in the
Data Manager
. Similarly, a data steward must have merge privileges to use the
Merge Manager
to merge or unmerge records. To learn more about the