Some pointers and a question around permission management.
Like everyone else, we create permissions centered around either specific system profiles and or some degree of server management.
I was confused this morning when trying to give a user the rights to saved stored sessions on the server - I was thinking this was a role I could give at the SP level, but this was not enough. The user could save a stored session on the server, from his SP, but then could not view it after it was saved! Not very useful or intuitive!
Because being able to view/read stored sessions is not a SP related permission I had to create a "view session store" role and then assign that role to the "server management" role, as outlined in the upper green box below. That fixed the problem - I have to say, it's not very intuitive, but because some permissions are "SP" level and some are "server management" level it's confusing at first!
Does anyone know what <default> and <user id> are used for?