We have two AD groups A , B. We have a requirement that users from AD group A should have read access and user from AD group B should have Read and Publish Access. So for this we have created security rules accordingly in QMC. and it is working fine.
Now we have two Apps Capital, Savings and we have a requirement that users who are using Capital should have only read access and Users who are using Savings Dashboard should have access to publish the community sheets. So I have implement Section Access for Both the Apps.
For Capital Dashboard to Pick only AD group A
For Saving Dashboard to Pick only AD group B
But the problem is when the User is present in both the AD groups he is able to publish both the Capital Dashboard and Savings Dashboard, which should not happen.
Please suggest any work around other than creating separate stream