Groups and roles

Groups allow you to organize your users and resources (computers, container profiles, collections) hierarchically. They make it easier to apply security policies, delegate administration, and manage access at scale.

Important

This feature is available starting with the Enterprise plan

Create a Group

  1. Go to your organization or a subgroup.

  2. Click New Group. The New Group dialog opens.

  3. Complete the following fields to define your group:

    • Name: Enter a unique identifier for the group (e.g. Paris office)

    • Direct Members Only: Enable this to exclude parent group members and strictly limit access to explicitly added users.

    • Pool mode: Enable this to treat the group as a shared resource. Users are routed to the first available computer automatically.

  4. Click Save.

Once your group is created, the Edit Group dialog opens. Use the left-hand navigation pane to configure your group.

../../../_static/images/orga/groups/orga_groups_create_en_2_2_0.png

Edit group dialog.

Assign Users to a Group

  1. Navigate to your group and open the Users section.

  2. Click New User > Assign existing user.

  3. Select one or more users by clicking Assign next to their name.

../../../_static/images/orga/groups/orga_groups_assign_user.png

User assignment window for a group.

  1. Click Done.

The users then appear in the group’s list.

../../../_static/images/orga/groups/orga_groups_user_assigned.png

List of users assigned to a group.

Define User Roles in a Group

Each user assigned to a group can be given a specific role.

Available roles are:

  • Group Member: basic group member, access to assigned resources.

  • Group Support: no management rights, access to all workstations in remote support mode.

  • Group Administrator: group administrator, able to manage users, computers, and group resources.

  • Extended Group Administrator: special role able to assign users from other groups to the group’s resources.

As a group administrator, you can also enable the Has Computer Access option, which grants access to all computers in the group.

../../../_static/images/orga/groups/orga_groups_user_permissions.png

Permission editing window for a user in a group.

Edit Group Settings

To edit your group settings, navigate to your organization, and then click edit_square Edit Group next to the group you want to update.

../../../_static/images/orga/groups/orga_groups_edit.png

Edit group button.

Summary

  • Groups structure your organization and simplify access management.

  • Pools allow dynamic assignment of available computers to a user.

  • Roles ensure fine-grained rights delegation:

    • Group Member: basic usage.

    • Group Support: support for your users.

    • Group Administrator: manage group users and resources.