one acl is giving access to the field and one is restricting so what will happen

IAmIshan
Tera Guru

‎07-14-2023 06:56 AM

Also, can anyone provide me interview questions on ACL and different use cases.

0 Helpfuls
  • 1,446 Views
2 REPLIES 2

OlaN
Giga Sage
Giga Sage

‎07-14-2023 07:04 AM

Hi,

In general, treat ACLs as rules that grants rights. If you have been granted rights by an ACL, no other ACL can prevent that access.
You can get lots of information on ACL from Docs, Youtube or here on the Community, do a little research 😀
I'll provide one source you can start with.

0 Helpfuls

johnhardesty_wo
Giga Expert

‎07-14-2023 08:03 AM

This sort of issue - where rights are restricted at one level and unrestricted at another level - is actually quite common i any hierarchal system.

There is no real easy answer other the obvious - document, document and document. 

If your documentation can shows the hierarchal access structure from top to bottom and bottom to top, then finding the mixed message ACLs may be easily identified.

 

Also, if you have a generic policy concerning access - access is denied - and the denial is pushed to the hierarchal layers; then, you should be able to protect the access and the data.

 

Try not to have conflicts between levels of data structure as this will cause LoUC to bite and bite HARD - Law of Unintended consequnces

0 Helpfuls