Here is a quite useful process ! This process will allow you to manage your other processes rights and the global policy ! With it , you will be able to define which users or which groups are able to start or read defined processes . You will also be able to chose whether all your user can start processes by default or none of them can . There may be some french bits remaining in the code / strings , please tell me so i can remove it.
Dependency : You need groovy-ldap if you want to apply rules to LDAP groups : http://directory.apache.org/api/groovy-ldap.html ( download here : http://directory.apache.org/api/1-download-groovy-ldap.html )
How to setup for LDAP : Configure your LDAP connection strings in the Add rule to group form ( in the "group" data and the "Ok" action )
Let me know if you got any suggestion :)
And don't forget to vote if you like it !