Newly installed repositories do not execute authorization checks as long as no authorizations have been defined. Access controls are executed only after the first permission has been defined. Before that, every user has all rights.

In addition, you must protect the directory in which the ACLs are stored in the repository. SAP urgently recommends you maintain the authorizations immediately after the installation.

· Granting the basic rights to all users (read, change, check in)

· Granting the administrators' rights

· Protecting the ACLs and other system directories against access by "normal" users

See also: