Welcome, Guest
Username: Password: Remember me

TOPIC: ESE - Account Security

ESE - Account Security #2549

  • timkiel
  • timkiel's Avatar
  • OFFLINE
  • Fresh Boarder
  • Posts: 12
  • Karma: 0
Issue:
Unable to restrict view to accounts per division while still being able to see orders.
Anyone have a solution?

Environment:
ESE (246-249) with multiple divisions (and corresponding back offices – Macola ES) using interconnect
Account # 1 in division 1
Account # 2 in division 2
Resource # 1 in division 1
Resource # 2 in division 2

Scenario:
Out of the gate all resources see all accounts and all orders on all accounts (this is the issue – need to restrict view of accounts and orders to the division level)
To restrict the view of accounts from other divisions than the user - turn on: Customers - Setup - Other - Settings - Account - Security: Check – Roles
Now Resource 1 can only see Account 1 and Resource 2 can only see Resource 2 (works as intended)
However when you then use the Monitor item of Orders (interconnect) no data is returned now (here is the problem)

Exact Support:
States this is by design. This flag does two things – restrict the view of accounts to the division level and restricts the view of orders to the account manager.

Desired Affect:
Restrict view of accounts and orders to the division level.
Taking this a step further: Allow for access rights to the account (and everything for that account) at the division level, a different role. Then further allow for access rights to various roles based on content (ie. financial, orders, documents, requests, etc).

Why this is important/issue:
Security Flag Set:
Only resources in the same division can see accounts (good)
Only account managers can see orders – salesperson’s of each address cannot see orders (bad)
Security Flag Not Set:
All resources can see all accounts and orders (bad)
The administrator has disabled public write access.
Time to create page: 0.030 seconds
Powered by Kunena Forum  Protected by R Antispam