Access Control Groups

To group users so that permissions can easily be applied to multiple users, you must define each group of users that you would like to apply permissions to in the security policy file. Locate the groups heading in the security policy file and add a line after it for each group of users. For example, specify the following:

     groups
        group1=davidl,robertb,tomd
        group2=susanh,joannd,nicolem
        group3=group1,miket,joew

A group name can consist of any combination of letters and numbers but can only be defined once. A group can be assigned to other groups.

A user name is either a user's logon user name, if user name/password authentication is used, or the common name of the user's leaf certificate when LDAP certificate authentication is used.