User Security groups

We are currently implementing AX 2009 and have struggled with user group security. I know that each company has specific requirements for security, but I am wondering if someone could share a few groups of how they configured it. Examples tend to help when setting things up. A few AP, AR, or GL groups would be a good start.