51ºÚÁϲ»´òìÈ

[Security posture]{class="badge yellow" title="Security posture"}

Website permissions opportunity

Website permissions opportunity {align="center"}

The website permissions opportunity optimizes website permissions, crucial for maintaining a secure and manageable AEM environment. This opportunity allows you to refine access controls by removing overly broad permissions - such as jcr:all on generic paths like / or /content — and aligning user access with the principle of least privilege. By streamlining permissions and eliminating redundancies, you can reduce security risks, improve maintainability, and prevent future misconfigurations. Review and update permissions in the AEM Security Permissions console or in your code repository. Doing so ensures that service users have only the access they truly need.

Auto-identify

Auto-identify website permissions {align="center"}

The Website Permissions opportunity feature automatically identifies and lists

  • User – The user account with the suspect permission.
  • Path – Use the tabs across the top to organize and filter opportunities by status.
  • Permission – The suspected permission.
  • Issue - Indicates the type of issue impacting the permission.

Auto-suggest

Auto-suggest website vulnerabilities {align="center"}

Auto-suggest provides AI-generated recommendations in the Suggested permissions field, allowing you to replace any flagged permissions with secure alternatives.

Auto-optimize

[Ultimate]{class="badge positive" title="Ultimate"}

Auto-optimize website permissions {align="center"}

Sites Optimizer Ultimate adds the ability to deploy auto-optimization for the vulnerabilities found.

Deploy optimization
Our team is here to help! For support with technical optimizations, join our Slack channel and connect directly with our experts.
Request approval
If you are not able to deploy the optimization, you can request approval from your AEM Site’s administrator. Selecting Request approval will send an email to the AEM Site’s administrator with the details of the optimization. The administrator can then approve or reject the optimization.
recommendation-more-help
24a3584c-64f9-48b4-955a-211c8e958065