How to create solutions that are visible only to the groups that created them.

We have multiple support groups (e.g. AppSupport, TechSupport). We need to ensure that an AppSupport user would see only AppSupport tickets.

There are default Access Control Groups (e.g. KMS-User, etc.) and default Visibility Groups that give all users access to all solutions.

We created our own Access Control Groups (e.g. APS-User, etc.) and Visibility Groups (VG-AppSupport) to do this. And we removed the default Access Control Groups (e.g. KMS-User) from the users because it granted access to all solutions.

The problem is that the default Access Control Groups (KMS-User) grant access to the RKM application. If we remove them from the users, the users can't log in.

Our RKM is integrated with Remedy. So any group changes must be done on the AR side. When our Remedy Admin created the new group (APS-User), he did it on the AR side.

Is there something special that he needs to do to get the new group to work correctly and to enable login access?

Why can't the users log in and create solutions when KMS-User is removed from them?

How can I get this working so that our AppSupport users only see AppSupport tickets?