User Groups permission | Community
Skip to main content
J
javed25
May 14, 2025
Solved

User Groups permission

  • May 14, 2025
  • 3 replies
  • 584 views

Hi, 
I have two groups rccl-royal-authors and rccl-cel-authors. And if a user is part of the rccl-royal-authors then he should have read/write/publish access to /content/experience-fragments/rcg-fragments/rci-fragments as shown below


If user is a part of rccl-cel-authors then he should have read/write/publish access to /content/experience-fragments/rcg-fragments/cel-fragments as shown below



And if a user is part of both groups then he should have access to both /content/experience-fragments/rcg-fragments/rci-fragments & /content/experience-fragments/rcg-fragments/cel-fragments. But this scenario is not working correctly, If a user is part of both groups then nothing comes in rcg-fragments


Here are the permissions i am using for both groups
rccl-cel-authors:


rccl-royal authors

 

Best answer by ShivamKumar

Hi @javed25 ,

This is happening because you have written conflicting deny permissions, you have to remove them.

 

To resolve the issue of conflicting permissions when a user is part of both rccl-royal-authors and rccl-cel-authors, do the following:

1. Remove Deny Permissions: Ensure there are no deny permissions set on /rci-fragments and /cel-fragments for both groups.
2. Explicitly Set Allow Permissions: Grant read/write/publish permissions for both groups on their respective paths (/rci-fragments for rccl-royal-authors, /cel-fragments for rccl-cel-authors).
3. Enable Permission Inheritance: Ensure that permissions are inherited from the parent folder /content/experience-fragments/rcg-fragments/.
4. Use the Permission Debugger to check if any deny permissions are still affecting access.
5. Test Access for users in both groups to ensure they can access both /rci-fragments and /cel-fragments.

 

This should fix the conflicting permissions issue.

3 replies

S
ShivamKumarAccepted solution
May 14, 2025

Hi @javed25 ,

This is happening because you have written conflicting deny permissions, you have to remove them.

 

To resolve the issue of conflicting permissions when a user is part of both rccl-royal-authors and rccl-cel-authors, do the following:

1. Remove Deny Permissions: Ensure there are no deny permissions set on /rci-fragments and /cel-fragments for both groups.
2. Explicitly Set Allow Permissions: Grant read/write/publish permissions for both groups on their respective paths (/rci-fragments for rccl-royal-authors, /cel-fragments for rccl-cel-authors).
3. Enable Permission Inheritance: Ensure that permissions are inherited from the parent folder /content/experience-fragments/rcg-fragments/.
4. Use the Permission Debugger to check if any deny permissions are still affecting access.
5. Test Access for users in both groups to ensure they can access both /rci-fragments and /cel-fragments.

 

This should fix the conflicting permissions issue.

Preetpal_Bindra
Community Advisor
Preetpal_BindraCommunity Advisor
Community Advisor
May 14, 2025

hi @javed25 

Another way to achieve this could be to create a parent group that has the common generic permissions for the entire hierarchy and 2 specific groups that inherit from this parent group.

 

Associate the parent group to the top most level of the experience fragments folder and,

associate specific groups to the subfolders where restricted access control is necessary.

 

Add users to the specific groups only. Do not add them to the parent group.

arunpatidar
Community Advisor
arunpatidarCommunity Advisor
Community Advisor
May 16, 2025

Hi @javed25 

Please check https://experienceleaguecommunities.adobe.com/t5/adobe-experience-manager/user-with-two-groups/m-p/753897#M184349 

Arun Patidar
Supriya_Savre
Supriya_Savre
May 20, 2025

Hi @javed25,

Did you find the above answers helpful? If yes, kindly consider marking the most suitable response as ‘correct’.

If you’re still facing any challenges, please feel free to continue the conversation here. We’re happy to support further.

 

Terms & ConditionsAccessibility statement

Loading footer...