Scenario 5: Limited internal visibility to a customer folder
This scenario illustrates how to set up limited internal visibility to a customer folder in the Public Queries folder.
In Scenario 3: Customer access to an internal database using Public Queries folder queries and Scenario 4: Customer access to an internal database using a common folder, users who are not a member of the CompanyAUsers or CustomerAAdmin group are not granted any permissions. These users have the default permission to read the Public Queries folder and all its contents, including CompanyAFolder. Furthermore, users with the Public Folder Administrator privilege can modify anything in CompanyAFolder.
It may be desirable to limit the visibility of CompanyAFolder to selected internal groups, such as product managers and technical support personnel. The Security Administrator performs the following steps:
- Grants No-Access permission to the Everyone group on CompanyAFolder.
- Grants Read-Only or Read-Write permission to selected internal groups on CompanyAFolder.
Result: Most internal users can see CompanyAFolder but cannot read its contents. Internal users who are members of the selected groups can read CompanyAFolder if granted Read-Only permission, or read and modify its contents if granted Read-Write permission.