You can associate one or more roles to an access group. Roles are additive. The more roles that you add to an access group, the more authorization there is. Privileges can be associated with one or more roles.
- Determine which roles are needed for your application. You can use the Pega Foundations roles as a starting point.
- Determine if View_Employee_PII and/or View_VIP_PII are needed.
- Determine which privileges to associate with each role.
- Associate each role with an access group.