Add Groups to a Visitor Role

When you add a group to a role, you grant the users in that group—and any any sub-groups—access to any parts of a portal to which that role is assigned. For example, if you have a Manager Portlet, you can create a "Manager" role and add the "managers" group to it, then assign the role to the Manager Portlet. When a user logs in who is a member of the "managers" group, they see the portlet. If a logged-in user is not a member of the "managers" group, the user does not see the portlet.

To add groups to a Visitor Entitlements Role:

1. In the Visitor Entitlements tool, select a portal Web application in the "Select Web Application" field. (Each portal Web application contains its own Visitor Entitlement roles.)
2. In the Visitor Entitlements resource tree, create a new role or select the role to which you want to add a group.
3. Select the Add Groups to Role tab.
4. In the "Add Groups from" field, select the authentication provider that contains the group you want to add.
5. Select the group you want to add by clicking the arrow to the right of the group name. The selected group appears in a list to the right. Repeat these steps to select more groups. (If you do not see a list of groups, see the Notes below.)
   To remove a group from the list of groups to add, select the check box next to it and click Remove from List.
6. Click Add Group(s) to Role.
7. Confirm that the groups have been successfully added to the role by selecting the Role Properties tab.
8. You can further define a role by adding users and expressions to the role.

Notes: If a list of groups is not displayed, make sure you have built a group hierarchy tree for the authentication provider. If after that you still do not see a list of groups, the authentication provider probably does not allow read access (see View Security Provider Properties to find out). However, you can activate a text field for group name entry for authentication providers that do not allow read access.

If you are using an RDBMS authentication provider, be aware of case sensitivity when looking up groups. For example, group "Managers" is different than group "managers.

Related Help Topics:

• Overview of Visitor Entitlements
• Create a Visitor Role
• Rename a Visitor Role
• Modify Visitor Role Properties
• Add Users to a Visitor Role with Expressions
• Add Users to a Visitor Role
• Create a New Group
• Set Delegated Administration on Visitor Entitlements
• Remove Delegated Administration from Visitor Entitlements
• Set Visitor Entitlements on Portal Resources