Managing Authorization Policies

Microsoft Commerce Server 2009 R2 uses Windows Authorization Manager to help secure business user roles, such as a Catalog Manager or Marketing Manager, and commerce entity roles, such as CommerceCreateOperation or CommerceDeleteOperation. Authorization Manager provides a role-based security model that you use to set permissions. With role-based access control, you specify access control relative to the organizational structure of your company. In the case of commerce entities, you specify access control based on the operations that can be performed on the commerce entity.

For more information about Authorization Manager, see https://go.microsoft.com/fwlink/?LinkId=16923.

Note

If you add a local user account to a group with role permissions in Authorization Manager, the local user must log out and log on again to use the appropriate roles.

In This Section