I'm converting an ASPRunner application to Enterprise 8.1. The old application uses Dynamic security groups to specify ownership of records. If a person is in a group, they can edit a record that was created by another person in the same group but can only view a record created by another group. I'm trying to enable Active Directory groups and am having some trouble:
I can enter an AD group into security_uggroups and ensure that the user entries in security_ugmembers reference the GroupID. I then make sure that the records that should be editable in the data table have the Group_ID referenced in the appropriate field. For instance:
security_uggroups.groupid = 10
security_ugmembers.groupid = 10
security_ugrights.groupid = 10 and security_ugrights.accessmask = AEDS
tbl_data.groupid = 10
But when I log in as a member of the group, I cannot edit the record (there's no edit icon displayed). What am I missing?
Thanks!