Master Data Manager Security (Master Data Services)
The following workflow provides an overview of how to configure security in Master Data Manager.
Configure model administrators
Decide which users need access to functional areas other than Explorer. These users must be configured as administrators.
Grant groups permission to manage data in the Explorer functional area of Master Data Manager
In order for a user to access master data in the Explorer functional area, add the user's Windows domain or local account to a domain or local group. Then add the group to the list of groups in Master Data Manager. After the user accesses Master Data Manager, the user's name is displayed in the list of users.
Alternately, the user's domain or local account can be added directly to the list of users in Master Data Manager.
Grant functional area access
Assign access to the Explorer functional area of Master Data Manager.
If you are not an administrator and you access other functional areas, you are not able to perform any administrative tasks.
Grant model object permissions
Assign model object permissions. These permissions determine which model objects a user can add, edit, or delete in Explorer.
If needed, grant hierarchy member permissions
Use hierarchy member permissions only when you want a user to have limited access to specific members. Hierarchy member permissions are optional.
If a user belongs to multiple groups that have access to Master Data Manager, or if a user has both model object and hierarchy member permissions, overlapping permissions must be resolved to determine the user's true permissions. For more information, see How Permissions Are Determined (Master Data Services).