Website permissions opportunity

Last update: Wed Mar 26 2025 00:00:00 GMT+0000 (Coordinated Universal Time)

The website permissions opportunity optimizes website permissions, crucial for maintaining a secure and manageable AEM environment. This opportunity allows you to refine access controls by removing overly broad permissions - such as jcr:all on generic paths like / or /content — and aligning user access with the principle of least privilege. By streamlining permissions and eliminating redundancies, you can reduce security risks, improve maintainability, and prevent future misconfigurations. Take action by reviewing and updating permissions in the AEM Security Permissions console or your code repository, ensuring service users have only the access they truly need.

Auto-identify

Auto-identify website permissions

The Website Permissions opportunity feature automatically identifies and lists

User – The user account with the suspect permission.
Path – The path in AEM that is affected by the permission.
Permission – The permission that is suspect.
Issue - Indicates the type of issue impacting the permission.

Auto-suggest

Auto-suggest website vulnerabilities

Auto-suggest provides AI-generated recommendations in the Suggested permissions field, allowing you to replace any flagged permissions with secure alternatives.

Auto-optimize

Ultimate

Auto-optimize website permissions

Sites Optimizer Ultimate adds the ability to deploy auto-optimization for the vulnerabilities found.

Deploy optimization

Our team is here to help! For support with technical optimizations, join our Slack channel and connect directly with our experts.

Request approval

If you are not able to deploy the optimization, you can request approval from your AEM Site’s administrator. Selecting Request approval will send an email to the AEM Site’s administrator with the details of the optimization. The administrator can then approve or reject the optimization.

recommendation-more-help