Skip to content
← CommunitySuite Idea Lab

How can we improve CommunitySuite? Search or submit ideas below.

CommunitySuite Idea Lab: Permissions/Logs

Categories

JUMP TO ANOTHER FORUM

(thinking…)

Security Issue: Inactivating a User

We have a security issue that I hope can be addressed. We need to give someone the ability to inactivate a user without giving them extensive access throughout CSuite. This is necessary for immediate off-boarding. Right now, the only way to provide the ability to inactivate someone is to give them Edit permission on Users. Once you have that permission, you can add anyone to groups, sufficient enough to give almost anyone system-wide permissions. That’s sensitive and dangerous. We just want to give someone the ability to do user maintenance functions, such as resetting a password, unlocking a user, or inactivating one, as mentioned, without further permissions. In our case, we have a third-party IT group supplementing our support, so it is an important need.

11 votes

We're glad you're here

Please sign in to leave feedback
Signed in as (Sign out)
Close
Close

We’ll send you updates on this idea

Joel Schwartz shared this idea  ·   ·  Report…  ·  Admin →
How important is this to you?

We're glad you're here

Please sign in to leave feedback
Signed in as (Sign out)
Close
Close

We're glad you're here

Please sign in to leave feedback
Signed in as (Sign out)
Close
Close
Submitting...
An error occurred while saving the comment
  • Sara Marsowicz commented  ·   ·  Report

    I agree! I would love it if permissions could be defined by user , and not just user group.