Permission Groups are the core security mechanism in the portal.
Definition: They define exactly which services and functionalities a user can access (e.g., "Read Only" access to Invoices, or "Edit" access to M365) .
Enforcement: A user's access level is determined entirely by the groups they belong to. Changes made to a group are automatically enforced across the ecosystem .
Management: You can create custom groups in the Users & Permissions section by selecting specific portal and application roles to match your internal team structure .