I am pretty new to documentum world. Need some directions. we are planning to implement most of the stuff out-of-box (webtop,DA etc)
1. Should we setup repository object security via Type, Folder or User. what is the best way
2 How does the Dynamic group, aliases and document security work together.
3. We have lot of departments, document Type , different security & LifeCycle. Should we use dynamic group & aliases. Is it supported in webtop etc.
Scenario 1
Type 1
Permission Set1 (ACL)
Group 1.1 = Delete
Group 1.2 = Write
Group 1.3 = Read
Type 2
Permission Set2 (ACL)
Group 2.1 = Delete
Group 2.2 = Write
Group 2.3 = Read
Each type will have a corresponding Permission set(ACL) & groups will be assigned their rights inside. so when we have large set of Documents types, we have that many permission set (ACL) also. In this model repository will be configured for Type level security, when someone add documents, its security will be assigned via Type permission set.
What is the drawback of this model & how will it affect when livecycle is involved. Is there a way to use dynamic group , aliases and reduce the lot term maintance on the system
