Permissions for all content

In the Permissions application, you can find a permission matrix for controlling role permissions to all documents within the content tree (in the Pages application).

To configure permissions for all content:

Open the Permissions application.
In the first Permissions for drop-down list, choose Module.
In the second drop-down list, choose Content.

The changes you make on the permission matrix apply immediately.

Permission matrix for document and pages

The following global permissions can be granted to particular roles:

Browse tree	Allows members of the role to view the document content tree in the Pages application (not necessarily the actual document content – that is determined by the Read permission). For users without this permission, the system blocks the entire Pages application. Users need the Browse tree permission to perform document management actions via the On-site editing interface.
Read	Allows members of the role to access the Page tab and Design tab, and view Properties of documents in the content tree. Users need Read permission to access the On-site editing interface.
Modify	Allows members of the role to make the following changes: Edit content of documents on the Page tab and Form tab. Move documents in the content tree. Modify the majority of document properties with the exception of Security and Workflow properties. To modify the Security properties, only the Modify permissions permission is required. To modify the Workflow properties, only the Manage workflow permission is required.
Check in any document	Authorizes members of the role to perform the Check-in and Undo check-out actions on the Properties -> Versions tab.
Create	Allows members of the role to create documents of any document type in the content tree.
Delete	Allows members of the role to delete any document in the content tree.
Manage workflow	Allows members of the role to approve or reject any document at any workflow step. Note that the Modify permission is not necessary for approving or rejecting documents.
Destroy	Allows members of the role to destroy any documents, i.e., delete without the Undo option.
Modify permissions	Allows members of the role to manage document-level permissions of any document on the Properties -> Security tab. Note that the Modify permission is not necessary for managing document-level permissions.
Submit for translation	Allows members of the role to create new language versions of documents using Translation services.