Sent from Yahoo! Mail on Android Are you building an Identity Management system? If not then obviously the first requirement is normally orthogonal to the business domain and is left to whatever manages users in an LDAP directory including group membership. The second requirement could be modeled as part of the business domain.
David.
