Letting non-administrators add users to a group in WebSphere Portal
kcibmer 1000007V7A Visits (2559)
A customer recently asked if the above can be done. The answer is Yes! Typically, group management is done on the LDAP side, and Portal uses the user and group configuration in a read-only manner. However, if you want to let Portal update LDAP, here's how you can do it.
Let's say you have a user called groupAadmin, and you want to let him add and remove users from GroupA.
First, give groupAadmin the role Security Administrator on the virtual resource called USERS. To do this, the portal administrator users the Resource Permissions portlet. Click on the Virtual Resources item, and then USERS. Add groupAadmin.
In the same portlet, navigate to the User Groups resource. Search for GroupA, then click its assign access icon.
Get all the gory details here on what permissions are needed where for just about any task you can do in portal.