Configure annotation security mapping to determine how access permissions are transferred between the systems. Security mapping for IBM® FileNet® Image Services annotations is managed on the FileNet Image Services system.
Without security mapping, the access permissions (read, write, append/execute) for annotations that are exported to Content Platform Engine or FileNet Image Services are ANYONE/ANYONE/ANYONE regardless of the annotation security. If you do not configure annotation security mapping, any authenticated user can delete replicated annotations. With security mapping, the same access permissions that are in effect on an FileNet Image Services annotation carry over to the Content Platform Engine server.
FileNet Image Services users are defined as internal users to FileNet Image Services and are case-sensitive. Content Platform Engine users are Windows users and are not case-sensitive. In FileNet Image Services, the following names are unique: User, USER, and UsEr. However, when FileNet Image Services passes annotations to Content Platform Engine, all three names (User, USER, and UsEr) resolve to a single Windows user that is named User.
To configure annotation security mapping: