I have 100s of groups defined in ldap. I import all of them to CA and set their role as 'superuser'. Now, I could log in to CA-RA with a username which is member of either of these imported groups. But then, the user does not carry a 'superuser' user role with it. It does not have any permissions to any of the applications even if it is a member of a group which has 'superuser' permission.
So, do i need to assign permissions to each user manually, who logs in to CA-RA?
Is there a way that i could propagate group roles and permissions to the user?