Awhile back, I created a Distribution Group in AD that has a list of all domain users that I set up as Named Users, by synchronizing with this group in the Licence Manager.
What I've been trying to do is give this group read-only permissions to sections of our repository. So what I've done is added a new group in Laserfiche (Laserfiche Users), and tied it to the same group in Active Directory (the same one we use for dictating licensed Named Users in the repository). Despite giving this group read-only permissions to specific record series in the repository, and confirming this group has read-only as effective permissions, it doesn't appear the permissions apply to the actual group member themselves; this was confirmed by manually adding individual members to the group in Laserfiche, and seeing all folders where I'd added read-only for the group suddenly appear (after logging out and back in).
Hopefully I'm explaining this properly. I'm just puzzled by the group permissions I've set, which are tied back to the AD group containing all Named Users, is not applying properly, despite the group having the correct effective permissions on the group level, but not the correct permissions on the individual (group member) level.
(Ultimately I'm trying to make it so "Everyone" only sees a specified folder, or group of folders, while giving all Named Users read-only access to all public information to our employees...but not people outside of our organization.)
Thanks to anyone who can assist! :)
Marty Gaffney - Network Technician
Town of Okotoks