Create Access When Rule:

Go to Records Explorer > Security > Access When.

Create a new Access When rule that checks if the current user is either the primary or secondary owner of the account. Use conditions like current user = primary owner or current user = secondary owner.

Configure the Access When Rule:

Open the Account case type.

Go to the Security tab and in the Case Type rules, apply the created Access When rule to ensure that only users who meet the conditions (primary or secondary owners) can view or update the case.

Apply Access Control:

In the Access Role configuration, apply the Access When rule for read and write instances of the Account class.

Ensure that the roles assigned to the users have the necessary permissions configured.

Testing and Validation:

Test the implementation by logging in with users who are primary or secondary owners and verifying access.

Try logging in with users who are not owners to ensure access is denied.

References:

Pega Academy: Security and Access Control.

Pega Documentation: Access Control Policies and Access When Rules.