@Venkatk17188855

Client-based access control (CBAC) Rules define where personal data is stored and how it can be accessed.

These CBAC Rules are used by the application server that receives and processes the requests.

1. Create the CBAC rules – Create the CBAC Rules that describe the personal data and identifiers:
   • The applies to class of the CBAC instance is the class where the personal data is stored or where an identifier is referenced. The applies to class can be an abstract class if the data is stored on different concrete classes within the same abstract class. The instances are of Data-, Index- or Work-.
   • The ruleset of the CBAC instance belongs to the application that controls the personal data. You can create CBAC instances in a ruleset that is shared by multiple applications, or in separate rulesets by application.

For detailed steps on creating the CBAC rules, see the steps below URL.

https://docs.pega.com/bundle/platform/page/platform/security/define-cbac-rules.html

Hi @Venkatk17188855,

Please find the below steps to create CBAC:

1. Create a New Access Control Policy from Records> Security> Access Control Policy

2. Define Policy Conditions from conditions Tab. Use the Access Control Policy Condition records to define complex conditions.

3. Associate policy with the class by adding the newly created access control policy in Security Tab. Please ensure the policy is enabled and configured correctly.

4. Test the configuration by logging in as a user who should be affected by the policy. Verify that the user’s access is correctly restricted based on the conditions defined. Adjust the policy or conditions as necessary based on testing outcomes. 

Regards,

Mamatha Adiraju