The IsaModePromoteOptions enumeration contains parameters of mode activation of role division between information security administrator (ISA) and application administrator (AA). It is used by the IMetabasePolicy.PromoteToIsaMode property.
| Value | Brief description |
| 0 | None. ISA does not have rights to update users. |
| 1 | GrantDbSecurityAdmin. ISA will have privilege "Applying users rights on DBMS level", it means he can update users. Application administrator can also update users. |
| 2 | RestrictAdminAccess. Users that have privilege as AA has (Create, delete users) cannot open repository object, privilege "Right to open and read all objects" will be ignored. On attempt to open repository object a message will say that user does not have enough rights to perform the operation. |
| 4 | RestrictIsaAccess. Users that have privilege as ISA has (Change security mark and a list of access control of any object) cannot open repository objects, privilege "Right to read and open all objects" will be ignored. On attempt to open repository object a message will say that user does not have enough rights to perform the operation. |
See also: