Back   Forward Atlas — Initial Access Groups
(Data-Admin-OperatorAccessGroup)

 About Access Group data instances

When first installed, your system contains the following access groups, each linked to the standard application rule PegaRULES.06.01.zz.

CautionTo protect the integrity of your PRPC system and to avoid upgrade issues, updates to the access groups listed below are not possible. As a best practice, use the Application Express to create access groups and Operator IDs for your organization.

To list all access groups on your system, select Org & Security > Security > Access Groups.

Name

Purpose
PRPC:Administrators

An access group that serves as a template for access groups for developers, system administrators, and other users of the Designer Studio.

CautionExcept upon initial use of a newly installed PRPC system, do not log in with Operator IDs that directly reference this access group, which has special restrictions preventing certain updates. Instead, create organization-specific operators and access groups using the Organization Setup gadget. See More about Access Groups.

PRPC:Agents

For all Batch requestors. Supports all agents, listeners, and services, including the Pega-ProCom agent, which enforces service level rules.

NoteFor service requests, this access group applies only temporarily, until the system finds the service package, typically using a key part provided by the listener or the arriving request. At that point, the access group in the Service Package data instance (Data-Admin-ServicePackage class) applies, whether or not the service request is to be authenticated. That access group can provide the service with access to other RuleSets, privileges, and access roles.

PRPC:PortalUsers

For JSR-168-compliant portlet access. See About Service Portlet rules.
PRPC:Unauthenticated

For guest users.

PRPC:WorkManagers

For managers. This is a sample; create access groups for managers that provide access to the portal, RuleSets, and privileges appropriate to their needs.
PRPC:WorkUsers

For users who are not managers. This is a sample; create access groups for managers that provide access to the portal, RuleSets, and privileges appropriate to their needs.

Deprecated access groups

These are retained to support applications created in Version 4.2 and Version 5.X systems. They are deprecated and not recommended for continued use.

Name

Purpose
PegaRULES:Administrators Deprecated. Use the Administrators access group shipped with the product.
PegaRULES:WorkManagers Deprecated. Use the WorkManagers access group shipped with the product.
PegaRULES:Agents Deprecated. Use the Agents access group shipped with the product.
PegaRULES:PortalUsers Deprecated. Use the PortalUsers access group shipped with the product.
PegaRULES:Unauthenticated Deprecated. Use the Unauthenticated access group shipped with the product.
PegaRULES:WorkUsers Deprecated. Use the Administrators access group shipped with the product.
PegaRULES:ProcessArchitects Deprecated. Use the Administrators access group shipped with the product.
PegaRULES:SystemArchitects Deprecated. Use the Administrators access group shipped with the product.

Related topics Security category

Up About Access Group data instances
Up Atlas — Initial Data Instances