In the BUE, only Managers and Group Administrators can open the Security Center and review groups. The Groups field in the Users & Groups tab of the Security Center lists all the groups in the repository in alphabetical order. Subgroups appear indented below their parent groups. The Users in Group field lists the members of the selected group. If no group is selected, the field is blank. The Search field in this tab allows Managers and Group Administrators to search the name and description fields for groups. Simple wildcard searches are supported. A toolbar allows Managers and Group Administrators to perform the following actions:
Groups are formed of users or subgroups that require similar capabilities or access to the same resources. All users are members of the EVERYONE group, which is the set of all named users in the system.
A group is a collection of similar users. Typically, users are permitted actions based on rules that apply to groups, although rules may also apply to individual user roles. Users may belong to more than one group.
The BUE automatically creates groups whenever a Manager creates a new Domain and deletes them whenever a Manager deletes a Domain.
This feature simplifies group management by limiting it to the assignment of users to previously created groups. Managers and Group Administrators are not obligated to create or delete groups independently.
Each Domain creates one master group that uses its name. This group does not contain any users.
The Domain also creates four groups within that master group that correspond to the four basic user types within the BUE.
Members of the Basic User group can view content within their Domain and can save copies of reports they run deferred to their My Content folder for their own use.
Members of the Advanced User group have all the privileges of basic users, and they can create, share, and distribute their own content.
Members of the Developers group have all the privileges of basic and advanced users, and they can upload and connect to data, edit metadata, and create and organize Domain content. They can also manage the content other users see.
Group Administrators determine the role each user can have within a Domain by adding users to or removing users from groups and can change the General Access setting assigned to the Domain.
Users can be members of more than one of these groups and can have different privileges in different Domains. This capability is especially relevant to Group Administrators. In almost all cases, this group assignment, and the privileges it grants, is combined with membership in another group.
Only Managers and Group Administrators can add users to groups.
Note: When you select a group, the members of the group appear in the Users in Group field.
The user you added now appears in the Users in Group field, as shown in the following image.
Only Managers and Group Administrators can remove users from groups.
You can also remove a user from a group by right-clicking on the user and selecting Groups, then Remove from, then the group from which the user should be removed.