When creating a Dynamic User Group Policy with 'all identities' and 'all resources', it inadvertently gives all users access to all AutoSys instances, ignoring existing policies designed to restrict certain user groups to certain instances and jobs.
Release : 11.3.6
Component : WA AE/AUTOSYS RELATED EEM
This is working as designed. You must add users/groups and/or resources to the policy to avoid the reported behavior.
Development will include a warning pop-up in a future release to prevent EEM Admins from inadvertently giving access to all.