Restricting access to operator information in Pega 8.5

Restrict all access to data in the Data-Admin-OperatorID class to only the end user’s data by using an access control policy. You can restrict access to personally identifiable information (PII) for security purposes, such as protection against unauthorized exposure of PII data. Restricting access to only the end users' data increases the security and peace of mind of users who must communicate with clients and customers through public-facing channels.

To enable the pyDefault and pyRestrictToSelf rules in the Data-Admin-OperatorID class, follow the steps below:

1. In the header of Dev Studio, click Create > Security > Access Control Policy Condition.
2. In the header of Dev Studio, click Records
3. Open the pyRestrictToSelf access control policy condition rule.
   1. In the Policy Condition field, select pyRestrictToSelf.
   2. In the Applies To field, select Data-Admin-Operator-ID.
4. Click Save As, then select the application ruleset for which you want to enforce this restriction, and click Create and open.
5. On the rule form, click Availability, and then select Available from the list.
6. In the header of Dev Studio, click Records > Security > Access Policy Control.
7. Open the pyDefault access control policy rule.
   1. In the Policy name field, select pyDefault.
   2. In the Action field, select Read.
   3. In the Applies to field, enter Data-Admin-Operator-ID.
8. Click Save As, then select the application ruleset for which you want to enforce this restriction, and click Create and open.
9. On the rule form, click Availability, and then select Available from the list.