APPLICATION MANAGEMENT
This table lists the user access level privileges from highest to lowest.
Create private agents
Create personal folders/views
Create shared folders/views
Create LotusScript/Java agents
Read public documents
Write public documents
Replicate or copy documents
Write public document
Delete documents
Replicate or copy documents (only if "Read public documents" has been granted)
Select this privilege for all users with Author access. If you deselect this privilege to prevent Authors from adding any more documents, they can continue to read and edit documents they've already created.
Authors can delete only documents they create. If this privilege is deselected, a user can't delete documents, no matter what the access level. If a form contains an Authors field, Authors can delete documents only if their name, a group that contains their name, or a role that contains their name appears in the Authors field.
A user can run private agents that perform tasks allowed by the user's assigned access level in the ACL. Since private agents on server databases take up disk space and processing time on the server, you may want to deselect this privilege if performance is a concern.
A server administrator can further restrict a user's right to run agents in the Agent Restrictions section of the Server document in the IBM® Lotus® Domino(TM) Directory. Therefore, even if you grant a user the "Create LotusScript®/Java agents" access level in a database ACL, the Server document controls whether or not the user can run an agent on a particular server.
Personal folders and views created on a server are more secure than those created locally, and they can be made available on multiple servers. Also, administrative agents can operate only on folders and views stored on a server. If server space is a concern, deselect the "Create personal folders/views" option. Users will still be able to create personal folders and views on their local workstation.
Deselect this privilege to maintain tighter control over database design and to prevent users from creating folders and views that are visible to others. A user assigned this privilege can create folders and views that are visible to others.
Note Users who have this privilege can modify or delete any shared folder, view, or navigator in the database, regardless of whether they created it. Use caution when granting this privilege.
Since LotusScript and Java(TM) agents on server databases can take up significant server processing time, you may want to restrict which users can run them.
Whether or not a user can run agents depends on the access set by the Domino administrator in the Agent Restrictions section of the Server document in the Domino Directory. Even if you select "Create LotusScript/Java agents" for a name in the ACL, the Server document still controls whether or not the user can run the agent on the server. Work with your server administrator to set access rights for users to run agents on a server.
Select this privilege to allow users who have No Access or Depositor access to read documents and to see views and folders with the property "Available to Public Access users." A form must contain a text field named "$PublicAccess" with an assigned field value of one. Documents created from that form are public document.
Select this privilege to allow users to create/edit specific documents that are controlled by forms having the property "Available to Public Access users."
Select this privilege to allow users to:
The IBM® Lotus® Notes®-generated field $KeepPrivate captures whether the current user has replicate or copy privileges for the document. This setting applies only to Notes clients.
See Also