[Setup] Assigning role to group
yoel.ade at gmail.com
Fri Feb 15 02:11:19 UTC 2008
Thank you for your reply.
I've manage to create group and assign members to it.
However, I am still facing another problem. I have a page called
"admin-apps" on root folder.
I have groups of admin; for example ITAdmin, HRAdmin. I have put members to
And i created a role called "AppAdmin" which has View access on "admin-apps"
I have configured the following
ysusanto --> member of ITAdmin group (set in local_group)
ITAdmin group --> granted "AppAdmin" role (set in portal_role_manager page)
But I am still getting the following message when i logged in as ysusanto
and trying to view "admin-apps" page
You do not have sufficient privileges to view this page. If you believe you
are receiving this message in error, contact the site administration.
I tried adding ITAdmin in the sharing tab. It doesn't work either.
I am only able to view the page if I grant "AppAdmin" role directly to
Do you have any idea where I might be doing wrong?
Steve Adamo wrote:
> Hi ysusanto... since you are now able to access details from AD, you need
> to setup groups in Plone, and assign AD accounts to that new group… then,
> you set the permissions on a Plone folder, and make the contents only
> accessible to members of that new Plone group…
> Quick steps:
> CREATING NEW GROUP | ASSIGNING MEMBERS
> • Open up the Zope Management Interface
> • In the root of your Plone site, click the acl_users folder
> • Click the source_groups link
> • Click the Add a group link (next to current groups)
> • Give the new group an ID, Title and Description
> o ID: ExecGroup
> o Title: Executive Group
> o Description: This group contains members of the executive staff
> • Click on the ExecGroup link (now listed under Current Groups)
> • Click the Assign link (next to the group name at the top)
> • Under Principle ID, type the name of the person you want to add to the
> group, and click Search
> • The name should show up in the Available list
> • Click the name, and then click the arrow pointing to the right to drop
> the name in the Active group
> • Repeat this process until all the executive members are in the new
> CREATING NEW FOLDER | ASSIGING GROUP TO FOLDER
> • Login to your Plone site through the browser (as an admin)
> • Create a new folder off the root of the site
> • Give the folder a title and description
> • Once the folder is created, leave the State as Private, but click on the
> Sharing (light green tab)
> • Under Search for user or group, type the name of the ExecGroup name and
> • The new group should show up under Logged-in users
> • Check the Can view, Can review, etc. checkboxes in the ExecGroup row,
> and click Save (leave the inherit permissions box checked)
> Now when your employees that are in the ExecGroup login to the plone site,
> they will be the only ones who can see/access that folder. Post all those
> sensitive materials etc. in that new folder, and you should be set!
> hope that helps!
> ysusanto wrote:
>> Hi all,
>> I am using Plone 3.0.5 and PloneLDAP.
>> I've managed to create local group and put members into it. I can search
>> my ldap users and assign them to the group.
>> What i can't do is assigning my custom roles to that group. for example.
>> I created a group called HRD, I put HR staff to that group. I have a role
>> named HRDRole.
>> I would like to give that role to HRD group.
>> At the /acl_users/portal_role_manager, i can only assign user to roles. I
>> can't assign group to that role.
>> I hope someone can help me with this. desperately need this to work.
>> Thanks before for any responses.
View this message in context: http://www.nabble.com/Assigning-role-to-group-tp15475861s15482p15493617.html
Sent from the Installation, Setup, Upgrades mailing list archive at Nabble.com.
More information about the Setup