1. Access the Administration module.
2. Select Authorization Policy from the Access Control option on the menu.
3. In the Authorization Policy section, click Display and select the by Profile/Role option from the list that appears to view the permissions granted for each system profile and role. Note that by default the authorization policy is displayed by profile/role.
The system displays a list with the profiles and roles organized by category.
4. Click Expand () next to the category for which you want to edit the permissions granted to a profile or role included in it.
5. Click the profile or role for which you want to edit the privileges, which will be displayed on the right. Profiles are indicated by the () icon, while roles are indicated by the () icon.
6. Select the system privilege that you want to grant or deny for the profile or role selected by marking the checkbox next to it in the Permission column (see figure below).
Note: When a checkbox is marked, explicit permission is granted in the selected privilege for the profile or role in question (“allowed”). An unmarked checkbox means permission is not granted (“undefined”).
7. When finished, click Save to record the changes. If you want to quit the operation, click Cancel to discard the changes.
The system displays a success message.