During an onsite with HPE, the request to have more granular admin permissions per user has come up.
As we are having a configuration across different use cases and business units working on different relationship, there is a requirement to have "limited admin" role for people who can only change configurations for specific relationships, or only carry out specific actions (e.g. only create reports, only create CTAs but disable other actions in the rule engine, etc.)
admin permissions - more granular permissions
Already have an account? Login
Login to the community
Enter your username or e-mail address. We'll send you an e-mail with instructions to reset your password.
With us having a 24/7 support organization and CSMs working outside my hours as an admin, simple perm sets for like "Mass Edit CTAs" or simple rule updates are greatly needed.
I would also be able to dole out access to managers and such without giving them the ability to go in and completely destroy a connector/ingestion process.
It feels like there should be a dedicates permissions page, with a GUI where I could assign permission sets to specific users to be able to do their jobs more efficiently, without giving them the keys to the kingdom.
I have followed the steps given in https://support.gainsight.com/Product_Documentation/Reports_and_Dashboards/Admin_Configuration/Grant_Permission_to_Create_Reportsto build a new VF Tab named Report builder.
The access is controlled by a permission set Gainsight Report Builder.
But when we gave this permission set to one of our users it is opening up the entire admin functionality for that user, and support confirmed this is expected.....
We would just like to provide report builder access and not all admin functionality.\
Which let people create, run and edit rules.
But that has another one that allows only view to some users.
Different operations areas need to check the rule logic to validate some process.
Other very important think is permissions to delete CTAs or SuccessPlans.
This is definetly a must have for larger organizations where there is the need to delegate certain admin tasks to a subset of admins without having to give them full super admin access to the whole application.
I see this is now planned. When can we expect this to come?
Our use case is that we have a service operations team that handles provisioning for most of our SAAS vendors to help take some of the mundane workload off our more advanced resources. Since the change from SFDC to NXT version that service operations team is disabled. I'd rather not grant them super admin full access to everything just so they can provision users.
I can assign them navigation to user management but it is read only unless they have super admin currently.