23 Apr 2008
26 Nov 2009
Link to this post
In our internal application, we use AD Roles for security. We've come across a situation where that certain roles have access to create news, and others have access to approve them.
The problem is that the users in the Approvers role are also in the Contributors role. Searching on the forum, it looks like the Deny is a higher priority over Allow, thus not allowing the users in the Approvers role to Approve Items if they are also in the Contributors group.
Is there a way to switch the priority around so that Allow is higher then Deny.