A set of users designated for e-doc routing who share a common functional business responsibility. E-docs may be routed at any point in their approval to individuals or roles. Role approvals may require approval of all role members or any one member. KC also uses roles to control authorization, restricting certain functions to the members of a given group. Roles aggregate Permissions|keyword=Permission. When Roles are given to Entities|keyword=Entity (via their relationship with Principals) or Groups|keyword=Group, an authorization for all associated Permissions|keyword=Permission is granted.