|Administering the Community / Managing Permissions|
You can define a set of users to quickly assign them a variety of permissions.
Define a set of user groups that reflect the kinds of access you'll be granting. These groups can be defined in an external user identity system (such as an LDAP system) or in the application database.These groups provide a convenient, built-in way to manage people's access to application features.
The application includes two groups that are defined by the system: Everyone and All Registered Users. These are a good place to start when managing permissions that are in effect across the community. After you've figured out how permissions should be applied for these broad groups, you can start assigning permissions based to user groups you create.
The user groups that you set up will reflect your community's structure. There could be relatively few user groups, with separate groups for those who manage, moderate, and administer the community. Or there could be many, with groups representing departments in your organization, people with specific privileges (such as blogging), virtual teams within the organization, and so on.