CentraSite 10.7 | CentraSite User’s Guide | Runtime Governance | Gateway Management | Managing Gateways through CentraSite Business UI | Setting Instance-Level Permissions on Gateway Asset
 
Setting Instance-Level Permissions on Gateway Asset
Pre-requisites:
To assign instance-level permissions on a gateway, you must have one of the following roles:
*CentraSite Administrator: instances of API Gateway, API Portal, Mediator, and Insight Server gateways in any organization in CentraSite.
*Organization Administrator: instances of API Gateway, API Portal, Mediator, and Insight Server gateways in your organization.
*API Gateway Administrator: instances of API Gateway in the specific organization to which your API Gateway Administrator role applies.
*API Portal Administrator: instances of API Portal gateway in the specific organization to which your API Portal Administrator role applies.
*Mediator Administrator: instances of Mediator and Insight Server gateways in the specific organization to which your Mediator Administrator role applies.
In addition to the above, you can assign instance-level permissions on a gateway instance if you have the Full instance-level permission on the gateway itself.
You assign instance-level permissions on a gateway asset using the Permission action in the Gateway Details page.
Note:
If you do not see the Permission action in the Gateway Details page, it is probably because you do not have the required role or permission to modify the permission details of the gateway.
When assigning instance-level permissions on a gateway, keep the following points in mind:
*You can assign permissions to any individual user or group defined in CentraSite.
*The groups to which you can assign permissions include the following system-defined groups:
Group Name
Description
Users
All users within a specified organization.
Members
All users within a specified organization and its child organizations.
Everyone
All users of CentraSite  including guest users.
*If a user is affected by multiple permission assignments, the user receives the union of all the assignments. For example, if group ABC has Modify permission on an API Gateway and group XYZ has Full permission on the same API Gateway, users that belong to both groups will, in effect, receive Full permission on the API Gateway.
*To assign instance-level permissions on a gateway asset
1. In the CentraSite Business UI activity bar, click Governance Rules.
2. To filter the list to display the available API Gateway, API Portal, Mediator, and Insight Server gateways, do the following:
a. Go to the advanced search panel.
b. In the Narrow Your Results section, do the following:
a. Locate Applicable Scopes.
b. Select the required type of gateway asset from the drop-down list:
*API Gateway
*API Portal
*Mediator
*Insight
c. Click the plus button next to the drop-down box or press Enter to add the scope to the search recipe.
CentraSite displays the list of available API Gateway, API Portal, Mediator, and Insight Server gateways.
3. In the displayed list, select the gateway you want to assign the user and group permissions.
This opens the Gateway Details page. Also, the actions bar displays a set of actions that are available for working with the displayed gateway.
4. On the actions bar of the Gateway Details page, click Permission.
This opens the Assign Permissions dialog box.
5. To add users or groups to the User and Group Permissions list, do one of the following:
a. Type a partial string in the Add User or Group text box. CentraSite applies the filter to the users and groups in registry.
b. Select the user or group to which you want to assign permissions.
c. Click the plus button next to the text box or press Enter to add the user or group to the User and Group Permissions list.
-OR-
a. Click Choose.
This opens the Choose Users and Groups dialog.
b. Type a partial string in the Add User or Group text box. CentraSite applies the filter to the users and groups in registry.
c. Click the Search icon.
d. Select the users and groups to which you want to assign permissions.
e. Click OK.
6. To remove a user or group from the User and Group Permissions list, select the Delete icon beside the group name or user ID.
7. For Setting Instance-Level Profile Permissions. Select the View, Modify, and Full check boxes to assign specific permissions to each user and group in the Users and Groups Permissions list as follows:
Permission
Allows the selected user or group to...
View
Examine the details of the gateway.
Modify
Examine and modify the details of the gateway. This permission also allows the selected user or group to publish and unpublish APIs to the gateway.
Full
Examine and modify the details, and delete the gateway. This permission also allows the selected user or group to assign instance-level permissions to the gateway.
8. Click Save.