Skip to content

Designer Access

This page shows how to restrict Designer access to Windows AD users or custom users.

Access restrictions ensure only dedicated users can create or edit destinations, sources and extractions. You can apply access restrictions at multiple levels.

Restrict Access to the Designer

By default, Designer access restrictions also apply to extractions, destinations and sources. To restrict Designer access to existing users or user groups:

  1. Open Server > Settings from the main window of the Designer.
    security-manage-users
  2. In the tab Configuration Server, activate the option Restrict Designer access to the following users/groups.
    ServerSettings_authenticaion_methods
  3. Activate or deactivate authentication methods, see Authentication Between Designer and Server.
  4. Click [Add] to add existing Windows AD users or custom users.
  5. Assign access rights to the users or user groups.

Only designated users can access the Xtract Universal Designer.

Restriction Levels

Each user group has one of the following access rights. These rights apply to actions (read, create, modify) within the Designer.

Restriction Level Description
Read Members of this group have read access, but cannot edit extractions.
Modify Members have "read" access. Additionally, they can edit extractions but cannot create or clone them.
Create Members have "modify" access. Additionally, they can create and clone extractions but cannot perform admin tasks.
Admin Members have all rights with no restrictions. Additionally, they can change server settings, accessg logs, edit users, and configure connections.

Restrict Access to Extractions

You can apply access control at the extraction level. This overrides server-level settings. To restrict access to specific extractions for users or user groups:

  1. Double-click an extraction. The main window of the extraction type opens.
  2. Click [General Settings]. The window "General Settings" opens.
    General Settings
  3. In the tab Security, activate the checkbox Restrict Designer access to the following users/groups.
  4. Add or remove existing users and assign access rights to the users.
    Security-Settings

Only designated users can access or edit the extraction.

Restrict Access to Sources

You can apply access control at the SAP source level. This overrides server-level settings. To restrict access to specific sources for users or user groups:

  1. Go to Server > Manage Sources. The window "Manage Sources" opens.
    Source Settings
  2. Click [ ] to edit an existing connection. The window "Change Source" opens.
  3. In the tab Access Control, activate the checkbox Restrict Designer access to the following users/groups.
  4. Add or remove existing users and assign access rights to the users.
    Server-Settings_

Only designated users can access or edit the SAP source connection.

Restrict Access to Destinations

You can apply access control at the destination level. This overrides server-level settings. To restrict access to specific destinations for users or user groups:

  1. Go to Server > Manage Destinations. The window "Manage Destinations" opens.
    Source Settings
  2. Click [ ] to edit an existing destination. The window "Destination Details" opens.
  3. In the tab Access Control, activate the checkbox Restrict Designer access to the following users/groups.
  4. Add or remove existing users and assign access rights to the users.
    Server-Settings_

Only designated users can access or edit the destination.

Last update: June 16, 2025