there is no need to utilize user-defined properties. I think this is done for demonstration purposes, and because it is the easiest approach to simulate the "policy" approach, that has been done in MWG6. You can directly utilize the Auth.UserGroups property in your criteria.
Thanks for the quick responce. I could see no logical reason to do both.
Have MAKE it a great day.