[Setup] Assigning role to group

ysusanto yoel.ade at gmail.com
Fri Feb 15 02:11:19 UTC 2008

Hi Steve,

Thank you for your reply.
I've manage to create group and assign members to it.

However, I am still facing another problem. I have a page called
"admin-apps" on root folder.
I have groups of admin; for example ITAdmin, HRAdmin. I have put members to
this group.
And i created a role called "AppAdmin" which has View access on "admin-apps"

I have configured the following

ysusanto --> member of ITAdmin group (set in local_group)
ITAdmin group --> granted "AppAdmin" role (set in portal_role_manager page)

But I am still getting the following message when i logged in as ysusanto
and trying to view "admin-apps" page
Insufficient Privileges
You do not have sufficient privileges to view this page. If you believe you
are receiving this message in error, contact the site administration. 

I tried adding ITAdmin in the sharing tab. It doesn't work either.

I am only able to view the page if I grant "AppAdmin" role directly to

Do you have any idea where I might be doing wrong?



Steve Adamo wrote:
> Hi ysusanto... since you are now able to access details from AD, you need
> to setup groups in Plone, and assign AD accounts to that new group… then,
> you set the permissions on a Plone folder, and make the contents only
> accessible to members of that new Plone group… 
> Quick steps:
> •	Open up the Zope Management Interface
> •	In the root of your Plone site, click the acl_users folder
> •	Click the source_groups link
> •	Click the Add a group link (next to current groups)
> •	Give the new group an ID, Title and Description
> o	ID: ExecGroup
> o	Title: Executive Group
> o	Description: This group contains members of the executive staff
> •	Click on the ExecGroup link (now listed under Current Groups)
> •	Click the Assign link (next to the group name at the top)
> •	Under Principle ID, type the name of the person you want to add to the
> group, and click Search
> •	The name should show up in the Available list
> •	Click the name, and then click the arrow pointing to the right to drop
> the name in the Active group
> •	Repeat this process until all the executive members are in the new
> ExecGroup
> •	Login to your Plone site through the browser (as an admin)
> •	Create a new folder off the root of the site
> •	Give the folder a title and description
> •	Once the folder is created, leave the State as Private, but click on the
> Sharing (light green tab)
> •	Under Search for user or group, type the name of the ExecGroup name and
> Search
> •	The new group should show up under Logged-in users
> •	Check the Can view, Can review, etc. checkboxes in the ExecGroup row,
> and click Save (leave the inherit permissions box checked)
> Now when your employees that are in the ExecGroup login to the plone site,
> they will be the only ones who can see/access that folder.  Post all those
> sensitive materials etc. in that new folder, and you should be set!
> hope that helps!
> steve
> ysusanto wrote:
>> Hi all,
>> I am using Plone 3.0.5 and PloneLDAP.
>> I've managed to create local group and put members into it. I can search
>> my ldap users and assign them to the group.
>> What i can't do is assigning my custom roles to that group. for example.
>> I created a group called HRD, I put HR staff to that group. I have a role
>> named HRDRole.
>> I would like to give that role to HRD group. 
>> At the /acl_users/portal_role_manager, i can only assign user to roles. I
>> can't assign group to that role.
>> I hope someone can help me with this. desperately need this to work.
>> Thanks before for any responses.
>> Cheers,
>> Joel

View this message in context: http://www.nabble.com/Assigning-role-to-group-tp15475861s15482p15493617.html
Sent from the Installation, Setup, Upgrades mailing list archive at Nabble.com.

More information about the Setup mailing list