Title: Application Resources Describe the issue: The text says that "by default no resource types are enabled as application resources", which is not true. Deployments are by default enabled as application resources. The issue here is that the text is not considering deployments to be resources, which I believe is wrong. For example, you can revoke the permissions to deployments from Deployer in the same way you can grant permissions to other resources. Suggestions for improvement: I suggest counting deployments as normal resources (which they actually are). This would of course span more [sub]chapters than just this one.
One of the other chapters that would be affected is the "Role Permissions Matrix". Specifically, the note "[1]" would need to be reworded.
The part of the docs mentioned by lthon in original report seems to be reworked, can you confirm? If this is ready for QE please change the status appropriately
It's been almost two years since I filed this bug, so verifying it was a bit complicated, but yes, the content has been rewritten in a way that addresses this bug. Verified against: - Security Guide, Revision 6.4.0-11 - How To Configure Server Security, accessed on Customer Portal 2015-07-29 (no revision number available)