I have a requirement on a new application to set reader fields on documents to provide read access to the project manager (document owner) and to automatically grant read access to the supervisory chain (supervisor, supervisor’s supervisor, etc.). The security must remain accurate through organizational changes.
My original thought was to create a roll-up group (refreshed daily) for each employee with the group members being the supervisory chain, and then using this group in the readers field. However, I am concerned that the sheer number of groups required would cause problems, especially for upper management personnel whose name might appear in 1000+ groups.
Can anyone provide guidance or share how you address this issue?
Thank you for any suggestions.
Stan