Using Groups to Manage Permissions

By creating a set of groups that have increasing levels of permissions over servers, repositories, or object tree items, you can more easily manage the mapping of individual users to those various roles by adding or removing them from the appropriate groups. Doing so will save you from having to track which users have been assigned what roles; instead, you can check to see whether they are in our out of a particular group to see if they have the level of permissions associated with the roles assigned to that group.