Allow Blueprint Rollouts Without Requiring Read Access to All Live Copies | Community
Skip to main content
HardikCharadva
HardikCharadva
Level 2
January 28, 2026

Allow Blueprint Rollouts Without Requiring Read Access to All Live Copies

  • January 28, 2026
  • 5 replies
  • 32 views

In Adobe Experience Manager (AEM), performing a rollout from a blueprint currently requires the initiating user to have at least read access to all live copies associated with that blueprint. If the user lacks access to even one unrelated or newly created live copy, the rollout operation fails—even when the user has full permissions on the blueprint and the intended target live copy.

This behavior creates significant operational challenges in large, multi-site or multi-tenant environments where:

  • Editors are intentionally restricted from accessing unrelated live copies

  • New sites are frequently added under the same blueprint

  • Permission models are designed to enforce strict content isolation

As a result, editors are blocked from performing legitimate rollouts, while administrators can perform the same action successfully. This forces teams to either over-provision permissions, rely on admin intervention, or introduce service-account-based workarounds, all of which increase operational risk and complexity.

 

Requested Enhancement:
Allow blueprint rollouts to:

  • Succeed based solely on permissions for the blueprint and the target live copy(s), or

  • Gracefully ignore live copies to which the user does not have access, or

  • Provide a configuration option to control this behavior at the blueprint or system level

This enhancement would greatly improve scalability, security, and usability for enterprise AEM implementations, while aligning rollout behavior with least-privilege access principles

5 replies

HardikCharadva
HardikCharadvaAuthor
Level 2
January 29, 2026

Hello All,

Can anyone face similar issue, any idea how to sort it out.

 

In order to sort out, we had to provide editors all live copy access for rollout to work. Generally we provide read access on brand folder. 

 

We think it’s adobe bug that it’s forcing editors to have all live copies access. Please advise.

rampai
Community Advisor
rampaiCommunity Advisor
Community Advisor
February 1, 2026

Hi ​@HardikCharadva ,

Please submit this as an Idea in the Ideas section if you want this to be considered as a Product enhancement.

Also, have you used selective rollout to specific folders? Which version of AEM are you using?

Thanks,

Ram

HardikCharadva
HardikCharadvaAuthor
Level 2
February 9, 2026

Hi ​@rampai ,

Thank you for reverting back!

 

Sure, I’ll submit an idea.

 

Yes, Editors want to roll out changes to the live copies they own. However, since they don’t have read access to all live copies associated with the blueprint, they’re unable to roll out changes even to their own live copies.

 

We’re using AEM as a cloud service.

 

Regards

Hardik C

HardikCharadva
HardikCharadvaAuthor
Level 2
February 9, 2026

@rampai 

Raised as an idea: 

 

    kautuk_sahni
    Community Manager
    kautuk_sahniCommunity Manager
    Community Manager
    February 17, 2026

    @HardikCharadva Following up to see if this has been resolved. If you’ve found the answer, whether through the suggestions here or through your own troubleshooting, feel free to post the solution so others can benefit. If any reply helped along the way, marking it as accepted ensures the most useful information is easy to find. Thanks for helping close the loop!

    Kautuk Sahni
    Terms & ConditionsAccessibility statement

    Loading footer...