---- On Tue, 23 May 2017 22:19:09 +0100 Tim W wrote ----
Looks like it didn't work out.
This is what I did (ldap names changed for security reasons):
context insert {server admins} on {$lgcn_WindowsAdmins}
context insert {network admins} on {$lgcn_NetworkAdmins}
context insert {storage admins} on {$lgcn_SanAdmins}
allow {network admins} and {network assets} and {$tab_edit} and {$tab_addmore}
and {$tab_default}
allow {storage admins} and {storage assets} and {$tab_default}
allow {server admins} and {server assets} and {$tab_edit} and {$tab_addmore}
and {$tab_default}
but it didn't work.
I also tried to do this with my own personal ID - 'context insert {server
admins} on {$username_tim}' - and it didn't work either. The only thing that
did work is if I replaced 'server admins' in the 'allow' statements with my
own user id or $lgcn_ group.