How do I implement user groups in Knowledge?
You can use both predefined user groups and custom user groups that you create. In either case, you need to understand and set up the following to make effective use of user groups in Knowledge.
In security model terms, a user group is like a privilege, which you define in a data security policy (DSP) within a role. You add users to user groups by assigning them to roles that contain user group data security policies. We recommend that you create new roles when you set up user groups.
User groups are also specific to a department, or application. When you create a role to grant access to a user group, make sure that it also grants access to the department, or application, that the group belongs to.
Here are the basic tasks to set up a user group:
-
Create a new role. You can create a new role or copy an existing role and modify it to your needs.
-
Add a department data security policy. You can add one or more department DSPs based on your access requirements.
-
Add a user group data security policy. You can add one or more user group DSPs based on your access requirements.
-
Assign the role to users. You can assign the role to individual employees or groups of employees and set up autoprovisioning to automatically assign the role to new employees, as necessary.