--- a/src/pyams_security/security.py	Mon Sep 11 13:54:44 2017 +0200
+++ b/src/pyams_security/security.py	Mon Sep 11 13:55:37 2017 +0200
@@ -18,7 +18,7 @@
 
 # import interfaces
 from pyams_security.interfaces import IProtectedObject, IRole, IPrincipalInfo, GrantedRoleEvent, RevokedRoleEvent, \
-    IDefaultProtectionPolicy, IRoleProtectedObject
+    IDefaultProtectionPolicy, IRoleProtectedObject, ADMIN_USER_ID
 from zope.annotation.interfaces import IAnnotations
 
 # import packages
@@ -170,7 +170,7 @@
     @request_property(key=None)
     def __acl__(self):
         # always grant all permissions to system manager
-        result = [(Allow, 'system:admin', ALL_PERMISSIONS)]
+        result = [(Allow, ADMIN_USER_ID, ALL_PERMISSIONS)]
         # grant access to all roles permissions
         for role_id in self.get_granted_roles():
             role = query_utility(IRole, role_id)