4.3.6 CommonStore security model CommonStore uses its own security model to protect documents (e-mail and the attachments) from unauthorized access. The Content Manager security model is not used by CommonStore to determine which Content Manager user can access which document. Instead, the used item type has to have the attribute CSORIGINATOR. This attribute is filled during archiving and added to search requests by the CSX Search interface, and is used to store the distinguished name (DN) of the user mailbox the e-mail resided in. It is important to understand that this attribute is not part of the Content Manager security model and therefore is not included during the authorization process to determine whether a Content Manager user has access to a specific item when working with Content Manager clients. The attribute is only used by CommonStore to ensure that requests from an Outlook client are served correctly. Figure 4-11 on page 86 shows the CommonStore security model based on a small example, which is explained in the paragraph that follows it. Chapter 4. Security and user IDs 85