Confluence 4.1 のサポートは終了しています。
ドキュメントの最新バージョンを確認してください。
Permissions determine the actions which a user is allowed to perform within Confluence. Global permissions are one of the levels of permission provided by Confluence.
In order to assign these permissions, you must already have the global 'Confluence Administrator' or 'System Administrator' permission (described below). You can then assign global permissions to groups, individual users and anonymous users. Further permissions are granted from the space administration screens.
Some functionality described on this page is restricted in
[Unable to render {include} The included page could not be found. ({include} をレンダリングできません。ページが見つかりませんでした)] を選択し、
.
Overview of the global permissions
Global permissions control access across the whole Confluence site. Here is a list:
グローバル権限 | 説明 |
|---|---|
使用可能 | This is the most basic permission that allows users to access the site. |
ユーザープロファイルにファイルを添付 | This allows the user to upload files to be stored in their user profile. |
Update User Status | This allows the user to update their user status message, which can be seen on the user's profile, pages in their personal space and on various activity streams accessible to other Confluence users. |
個人用スペース | この権限は、ユーザーに個人用スペースを作成することを許可します。 |
スペースの作成 | This permission allows users to create new spaces within your Confluence site. When a space is created, the creator automatically has the 'Admin' permission for that space and can perform space-wide administrative functions. |
Confluence 管理者 | This permission allows users to access the 'Administration Console' that controls site-wide administrative functions. Users with this permission can perform most, but not all, of the Confluence administrative functions. See the comparison of 'System Administrator' and 'Confluence Administrator' below. |
システム管理者 | This permission allows users to access the 'Administration Console' that controls site-wide administrative functions. Users with this permission can perform all the Confluence administrative functions, including the ones which the 'Confluence Administrator' permission does not allow. See the comparison of 'System Administrator' and 'Confluence Administrator' below. Refer also to the note about the 'confluence-administrators' group below. |
The first system administrator is defined during installation
During the initial configuration of Confluence, the Setup Wizard asks for the username of the System Administrator. This user will have the 'System Administrator' permission and will be a member of the 'confluence-administrators' group.
Comparing the System Administrator with the Confluence Administrator Permission
Confluence recognises two levels of administrator:
- System Administrator – Users with this permission can perform all the Confluence administrative functions, including the ones which the 'Confluence Administrator' permission does not allow.
- Confluence Administrator – Users with this permission can perform most, but not all, of the Confluence administrative functions.
Tip: The two-tier administration is useful when you want to delegate some administrator privileges to project managers or team leaders. You can give 'Confluence Administrator' permission to users who should be able to perform most administrative functions, but should not be able to perform functions that can compromise the security of the Confluence system.
The following functions are excluded from the 'Confluence Administrator' permission:
管理者画面 | Confluence 管理者権限から除外 |
|---|---|
一般設定 | 以下の機能は許可されません。
|
セキュリティ設定 | 以下の機能は許可されません。
In Confluence 4.1.7 and earlier, configuring 'Public Signup' is also disallowed. |
プラグイン | 以下の機能は許可されません。
|
日次バックアップ管理 | この機能はすべて許可されません。 |
メールサーバー | この機能はすべて許可されません。 |
ユーザーマクロ | この機能はすべて許可されません。 |
添付ファイルのストレージ | この機能はすべて許可されません。 |
レイアウト | この機能はすべて許可されません。 |
カスタム HTML | この機能はすべて許可されません。 |
バックアップとリストア | この機能はすべて許可されません。 |
ロギングとプロファイリング | この機能はすべて許可されません。 |
クラスタ設定 | この機能はすべて許可されません。 |
スケジュール ジョブ | この機能はすべて許可されません。 |
アプリケーション リンク | この機能はすべて許可されません。 |
Comparing the Administrator Permissions with the confluence-administrators Group
The 'confluence-administrators' group defines a set of 'super-users' who can access the Administration Console and perform site-wide administration. Members of this group can also see the content of all pages and spaces in the Confluence instance, regardless of space permissions. They cannot immediately see the pages for which they are excluded by page restrictions without knowing the direct URL to the page (restrictions can be removed by members of the confluence-administrators group in the Space Admin screen if need be). For example, they will not see restricted pages displayed by the children macro. But they are able to access restricted pages directly using the page URL. The settings on the 'Global Permissions' screen do not affect the powers allowed to members of this group.
Granting the 'System Administrator' or 'Confluence Administrator' permission to a user will not automatically grant the user access to all spaces in the site. These permissions will only give access to the Administration Console.
しかし、「システム管理者」を持つユーザーは「Confluence 管理者」グループに自分自身を追加し、スーパーユーザーになることができることにご注意ください。
Confluence Administrator permission and confluence-administrators group are not related
Going by the names, you would think the 'confluence-administrators' group and the 'Confluence Administrator' permission are related – but they are not. To resolve confusion, we want to make explicit that granting a user or group 'Confluence Administrator' permission is not the same as granting them membership to the 'confluence-administrators' group. Granting the 'Confluence Administrator' permission enables access to only a subset of the administrative functions. Granting membership to the 'confluence-administrators' group, on the other hand, gives complete access.
Read more about global groups.
Updating Global Permissions
グループまたはユーザーのグローバル権限を表示するには、
- Choose Browse > Confluence Admin.
- Select Global Permissions in the Security section of the left-hand panel. The View Global Permissions screen appears.
グループとユーザーに権限を追加または編集するには、次の手順で行います。
グループに権限を追加するには、
- First add the group to Confluence, if you have not already done so.
- Click Edit Permissions. The 'Edit Global Permissions' screen appears, as shown below.
- Enter the group name in the Grant browse permission to box in the 'Groups' section. You can search for the group name.
- [追加] をクリックします。
- グループが一覧に表示され、権限を編集できるようになります。
To add permissions for a specific user:
(Consider adding the user to a group and then assigning the permissions to the group, as described above, instead of assigning permissions to the specific user.)
- First add the user to Confluence, if you have not already done so.
- Click Edit Permissions. The 'Edit Global Permissions' screen appears, as shown below.
- Enter the username in the Grant browse permission to box in the 'Individual Users' section. You can search for the username.
- [追加] をクリックします。
- ユーザー名が一覧に表示され、権限を編集できるようになります。
ユーザーまたはグループの権限を追加または編集するには、
- 該当するユーザーまたはグループの行で、該当の権限の下にあるチェックボックスにチェックを入れるか外すかします。チェックが入ったチェックボックスは、権限が付与されていることを示します。
- To allow anonymous access to your Confluence site, select the 'Use Confluence' and 'View User Profile' options in the 'Anonymous Access' section.
For more information about these permissions, refer to Setting up Anonymous Access. - Click Save All to save your changes.
スクリーンショット:グローバル権限の編集
エラーメッセージの表示
一部の権限に問題がある場合、Confluence はそのことをユーザーに通知します。まれに、権限の下に次のようなエラーメッセージが表示される場合があります。
- 'User/Group not found' — This message may appear if your LDAP repository is unavailable, or if the user/group has been deleted after the permission was created.
- 'Case incorrect. Correct case is: xxxxxx' — This message may appear if the upper/lower case in the permission does not match the case of the username or group name. If you see a number of occurrences of this message, you should consider running the routine supplied to fix the problem.
概要
コンテンツ ツール
アプリ
Except where otherwise noted, content in this space is licensed under a Creative Commons Attribution 2.5 Australia License.