by eggsurplus

Control what your users can access and save time, money, and frustrations. Lock down sensitive data in SuiteCRM to specific groups or teams. Supports unlimited assigned users, unlimited group assignments to records, custom layouts for each group, login/sudo capabilities and much more.

Cancel at any time!
Free Trial

#17 - Permission Settings

Closed General Question created by wpadmin 8 years ago

We have the following need:

We have two sales groups, each with a sales admin. The sales admin should be able to see all the documents their sales reps upload and the sales person should only see theirs. On top of that, we would like a Marketing Document group where everyone can see the documents associated with that group.

Is this possible with your extension?

  1. eggsurplus member avatar

    eggsurplus Provider Affiliate

    8 years ago

    Absolutely. The first part is exactly why SecuritySuite was created. To do that you would create a Sales Document group. Then assign a role to that group that sets everyone's rights to Documents to "Owner". Add all sales reps and the admin to that group. They will only be able to see documents that they are assigned to. Now for the sales admin create a "Document Admin" role and assign Group rights to Documents. Assign that role to the sales admin. When the sales admin logs in again (SuiteCRM caches permissions in the session so users will need to log back in before any changes you make go into effect) they will see all documents from their team.

    The key part to this is the auto inheritance. You will want "Inherit from Creator" checked in Admin->SecuritySuite Settings so that when a sales rep creates a Document it will also associate the Sales Document group to the document. Without that group assigned to the document the sales admin will not see the doc.

    The Marketing Document group would work similarly, but the role you assign directly to the group would have Group rights to Documents so that they can see all docs in that group. I suggest assigning the role directly to the group in both cases as it is easier to manage. Then you assign roles directly to users for the exceptions.

    Hope this helps!

    • wpadmin member avatar

      wpadmin

      8 years ago

      Thanks for the response. I will give this a shot.

  2. eggsurplus member avatar

    eggsurplus Provider Affiliate

    8 years ago

    Closing this out for now, but feel free to follow up if you need anything else.

This case is public. Please leave out any sensitive information such as URLs, passwords, etc.
Saving Comment Saving Comment...
Rating
  • "The add-on itself was already a must for my SuiteCRM, which was missing this very important security feature. However, what surprised me the most was ..." - Davint

    Read More Reviews