Setting Up Permissions for the Address Book

For the Personal Address Book or shared address book, set the following permissions in the organization, user, or role level

  • Permission

The permissions in the address book vary by security model.
The default setting is set to "REVOKE (All users have access except users on list)". This allows all users to use the Address Book.
For information on user rights, see User Rights and Prioritized Access Permissions.

Setting Permissions

The example shows how to set access permissions when the security model is "GRANT (Only users on list have access)".

Steps:
  1. Click the administration menu icon (gear icon) in the header.

  2. Click System settings.

  3. Select "Application settings" tab.

  4. Click Address Book.

  5. Click Permission settings.

  6. On the "Permissions Settings" screen, confirm that "GRANT (select target allowed)" has been selected in the security model.

    If the "REVOKE (select target for restriction)" option is selected, change to "GRANT (select target)".
    For details, refer to Changing the Security Model.

    Image of "GRANT"

  7. Click Add.

    Screenshot: Link to add is highlighted in the Permission settings screen

  8. On the "Add Permissions" screen, select the department, user, or role to set permissions, and then click Add.

    "Add Permissions" screen

    To select a role, switch the view to the Roles tab.
    When you switch tabs after clicking Add, the selected departments, users, or roles are cleared before you switch.

  9. Under "User rights", select the address book you want to use, and click Add.

    The following choices are displayed

    • Cannot be used.
    • Shared Address Book only
    • Personal Address Book only
    "Add Permissions" screen

Combination of Permissions

If you limit the actions of the Address Book using permissions, the Personal Address Book and the shared address Book are displayed on the Address Book screen of the logged-in user.

User screens that can use both Personal Address Books and Shared Address Books:

Image of users who can use both personal Address books and shared address books

User screens that cannot use both Personal Address Books and Shared Address Books:

Image of users who cannot use both Personal Address Books and Shared Address Books

If the security model is "GRANT (Only users on the list have access)"

This section describes a security model of permission for Daisuke Kato as a "GRANT (selecting a target)" example.

  • Example of Allowing Daisuke Kato to Perform Actions on Both Personal Address Books and Shared Address Books:
    Grant Daisuke Kato all permissions. Screenshot: Example of permission settings. "Activate" permission is granted
  • Example of Allowing Daisuke Kato to Perform Actions on Personal Address Books:
    Grant Daisuke Kato permission only for the personal Address Book. Screenshot: Example of permission settings. "Personal address book only" permission is granted
  • Example of Allowing Daisuke Kato to Perform Actions on Shared Address Books:
    Grant Daisuke Kato permission only for shared address books. Screenshot: Example of permission settings. "Shared address book only" permission is granted
  • Example of Prohibiting Daisuke Kato to Perform all Operations:
    You can delete Daisuke Kato from the user rights list. Screenshot: Example of permission settings. Daisuke Kato has been deleted from the permission list

If the security model is "REVOKE (All users have access except users on the list)"

The security model of permissions for Daisuke Kato is described as an example of "REVOKE (selecting a restricted target)".

  • Example of Prohibiting Daisuke Kato to Perform Actions on Both Personal Address Books and Shared Address Books:
    Grant the disabled permission to Daisuke Kato. Screenshot: Example of permission settings. "Deactivate" permission is configured
  • Example of Prohibiting Daisuke Kato to Perform Actions on Personal Address Books:
    Grant Daisuke Kato permission only for shared address books. Screenshot: Example of permission settings. "Shared address book only" permission is granted
  • Example of Prohibiting Daisuke Kato to Perform Actions on Shared Address Books:
    Grant Daisuke Kato permission only for the personal Address Book. Screenshot: Example of permission settings. "Personal address book only" permission is granted
  • Example of Allowing Daisuke Kato to Perform all Operations:
    You can delete Daisuke Kato from the user rights list. Screenshot: Example of permission settings. Daisuke Kato has been deleted from the permission list

Deleting Permissions

You can delete the permissions for users and organizations in the Address Book.
If you delete permissions, actions that users can perform changes as follows depending on the security model:

  • If the security model is "GRANT (Only users on list have access)":
    Users who were deleted the permissions or users who belonged to the departments or roles that lost permissions no longer be able to work with items they previously could.
  • If the security model is "REVOKE (All users have access except users on list)":
    Users who were deleted the permissions or users who belonged to the departments or roles that lost permissions can now work with items they prohibited to use.

Selecting and Deleting Permissions

You can select permissions and delete them.

Steps:
  1. Click the administration menu icon (gear icon) in the header.

  2. Click System settings.

  3. Select "Application settings" tab.

  4. Click Address Book.

  5. Click User Permissions.

  6. On the "Permissions Settings" screen, select the checkboxes for the permissions you want to delete, and then click Delete.

    Screenshot: Checkboxes of users to be deleted are selected on the Permission settings screen. The Delete button is highlighted

  7. Click Yes on the "Delete all Permissions" screen.

Deleting All Permissions

You can delete all permissions.

Steps:
  1. Click the administration menu icon (gear icon) in the header.

  2. Click System settings.

  3. Select "Application settings" tab.

  4. Click Address Book.

  5. Click User Permissions.

  6. On the "User Permissions" screen, click Delete all.

    Screenshot: The 'Remove all' link is highlighted in the Permission settings screen.

  7. Click Yes on the "Delete all permissions" screen.