Prerequisites

Before starting Certificate Groups configuration:

• Certificate Groups are used to categorize the certificates according to various business units.
• In some organizations, Certificate Groups are also used to assign access permissions. Only privileged users (inherited from Resource > User Group) can view the respective Certificate Groups.
• Users should be assigned to a Role (inherited from Role > User Group) that has access to perform the below actions,
  • View a group
  • Assign a group
  • Unassign a group
• With these actions, users can assign a group during Certificate Discovery to avoid movement of certificates post-discovery.
• Along with the view, assign, and unassign options, administrators should be assigned to a role that has access to additional actions:
  • Create/ modify a group
  • Delete a group
  • Edit default group