Group Administrator, Group Users: Different Roles, Permissions
Each group account has one Group Administrator ID, but may have many “Group User” IDs. The Group Administrator is the only ID that sees “Group Administration” and “Account” options in the Web Client.
Another key difference is related to folder permissions. The Group Administrator always has “Full Control” over all folders, while Group Users always have “View Access” only to the main or “root” folder, and have “Full Control”, “View Only”, or “No Access” to subfolders, depending on Folder Permissions settings.
Because Group Users always have “View Only” access to the main or root folder, they cannot create subfolders there, and cannot upload files to the root folder.
This is by design to ensure that no one but the Group Administrator adds folders or files to the root folder, where they are visible to ALL users.
There are two main scenarios for “best practices” related to folders in the root folder.
One approach is for the Group Administrator to create folders in the root and apply appropriate Permissions immediately. Group Users mainly operate with subfolders.
Another approach, which is useful for group accounts where all users are to have “Full Control” to most folders, is for the Group Administrator to create an initial subfolder, but not apply Permissions to the subfolder, and then let users know that subfolder is the location where they can create additional folders themselves.
This approach also provides increased flexibility for changes in the future, including other subfolders in the root that do have Permissions applied to keep it hidden from some or all Group Users.