Groups are sets of users that have access to a set of resources (e.g. doors or elevators) that share the same restrictions. Each group must have a name and a description. The advantage of using groups is the ease of managing users that have the same access points and the same restrictions applied to them.
Kisi groups can be either organization-scoped or place-scoped. Scope defines which permission level is required to manage the group.
- Organization-scoped groups can contain doors from different places, and can be created, updated, deleted only by organization administrators and organization access managers.
- Place-scoped groups can contain doors only from the same place, and can also be created, updated, deleted by place administrators and place access managers.
For more information about access rights in groups, please read our article on roles.
User import integrations only operate on the organization level. Therefore, you can only import users into organization wide, but not into place wide groups.
To have more control over how and when users in a group can access a door, Kisi offers configurable group restrictions.
Users who are part of several groups will gain access if at least one group allows access.
Joe is a part of Group A and Group B. Group A allows access to Door A, but Group B doesn't. Since Joe is a part of Group A, he is allowed access to Door A.