Group managers's manual
All VO members can be inserted into groups. Every group gets an access rights to resources in its VO. Groups can be nested like a tree and the access rights are inherited in the same way. Number of groups and subgroups is not limited. VO member can get rights to administer group. Group name must be unique in the VO. Groups can be managed via CLI or GUI.
Please do not forget that particular VO must be selected before manipulation with group. Group administration via GUI is done by clicking on Groups in left menu. The list of groups included in VO will appear. Button Create creates new group, button Remove removes selected groups (but only if you are also VO manager).
By clicking group name in the list of groups, detailed information about group and list of parent group appears. Subgroups will be shown by clicking Subgroups button, subgroup will be created by Create and removed by Remove.
Creating group manager from VO member
Members of VO can get the right to manage group in VO and become group manager. Group manager can add or remove group members, create subgroups and assign them managers. Manager doesn't have to be member of VO. Number of managers is not limited.
Administration of managers can be also done by clicking button Managers in left menu in GUI. New manager will be added by Add button and removed by Remove button.
Adding VO members into group
Both VO manager and Group manager can add new members in a group. Member who want to be added in the group must be also member of VO containing the group. One member VO can be member of more than one group; therefore has an access to all resources available in all groups.
Because of a hierarchy of groups in the system, user must be member of parental group before he will be added in subgroup. Oppositely, Group manager must be member of parental VO, but he might be member of group.