Universal Messaging 10.5 | Administration Guide | Universal Messaging Enterprise Manager | Using ACLs for Role-Based Security | Creating Security Groups
 
Creating Security Groups
Security groups can contain a list of subjects (username and host pairs) as well as other security groups. After you create a security group, you can add it to the ACL list of a realm or store. In this way, you can assign ACL permissions to a set of users through a single entry in the ACL list.
Membership of security sroups can be altered dynamically, and the changes are reflected in the permissions for all ACLs where the security group is an entry in the ACL list.
As with all ACLs in Universal Messaging, permissions are cumulative. This means that, for example, if a user is in a group that has publish permissions on a channel, but not subscribe permissions, the user cannot subscribe on the channel. Then, if an ACL entry is added on the channel for this specific username/host pair with subscribe permissions but no publish permissions, the user will be able to both subscribe and publish on the channel.
*To create a security group in the Enterprise Manager
1. Select the realm for which you want to create a security group and go to the Security > Groups tab.
2. Click Add Group and specify a name for the new group.
3. Do any of the following to add members to the group:
*To add a subject, click Add Member and specify the subject.
*To add an existing group, click Add Group To Group and select a group from the list.