Creating Custom Attributes

NOTE. Custom attribute creation is available only to administrator with Changing User Permissions, Distributing Roles, Changing Policy, Change Security Mark and List of Control Access of Any Object Privilege. Each attribute must have unique name and identifier to prevent intersections of identical attributes between objects and subjects.

To add attributes to users, go to the Users section:

In the desktop application, select the User > User Attributes main menu item.

In the web application click the Attributes button on the toolbar.

After executing operations, the Attributes dialog box opens to create, edit, delete user attributes.

Added attributes are contained in properties of a concrete user to edit its values.

To add attributes to groups of users, go to the Groups section:

In the desktop application, select the Group > Group Attributes main menu item.

In the web application click the Attributes button on the toolbar.

After executing operations, the Attributes dialog box opens to create, edit, delete groups of users attributes.

Added attributes are contained in properties of a concrete groups of users to edit its values.

Adding attributes is available to object classes and concrete object type.

Attributes are added to object classes, next to object type. After custom attributes are added, object properties will contain object class attributes and object type attributes to edit its values.

To add attributes to object classes, go to the Object Classes section:

In the desktop application, select the Object Classes > Class Attributes main menu item.

In the web application click the Attributes button on the toolbar.

After executing operations, the Attributes dialog box opens to create, edit, delete object classes attributes.

To add attributes to selected object type, go to the Object Classes section:

In the desktop application, select the Attributes tab in the Access Control Settings dialog box.
In the web application, use the Attributes tab on the Properties side panel.

After executing one of the operations, create, edit or delete attributes of object type in the same way as in the Attributes dialog box for object classes.

To get detailed information, go to the Adding Attributes to Object Types section.

To add a new attribute, click the Add button. The Attribute Properties dialog box opens:

Specify attribute properties: name, identifier, data type, and default value.

To edit the existing attribute:

Select the required attribute in the list.
Click the Edit button.

After executing the operations, the Attribute Properties dialog box with the specified properties for change opens.

To delete the existing attribute:

Select the required attribute in the list.
Click the Delete button.

After executing actions, the attribute will be deleted from the list.

Use the specified values of object type attributes to check access to object types in properties of attribute-based access elements: objective, condition.