AnsweredAssumed Answered

SecuritySuite Settings: Roles vs. Security Groups vs. Users

Question asked by Contelligence Contelligence on Feb 27, 2014
Latest reply on May 15, 2015 by Paul Paul
Hello all,

I am looking to achieve the following, using SugarCRM 6.5 CE and SecuritySuite (thanks eggsurplus!):

- Every new object (instances of Task, Contact, Lead, Account, etc.) should be visible to all per default.
- I want a group of superusers to have the ability to take viewing rights for certain object-instances (e.g. not all Leads, but Lead 'John Doe') from all others users except the superuser group.

I only managed to achieve this by giving all new objects a security group "all" per default and then manually taking it from every object I want to hide. But the normal users have to be in the role "Normal User" and the Security Group "all". Why do I have to assign the Security Group to every new normal user? Why doesn't the role "inherit" the rights of security group, so that I only have to assign a role to a new user, instead of a role + security group?

Thanks for your help in advance!

Best regards