Limit Access to entire Accounts, not just Account Updates

Answered

Latimer Luis

• November 05, 2020 21:05

It would be good to control overall account access in the Permissions settings, not just limiting it to account updates. I think this becomes much more important when dealing with Federal accounts.

I would also think there could be additional options here:

Everyone in Account Assignment + Those Above in Hierarchy
Everyone in Account Assignment + Those Above in Hierarchy + Team Admins

1

• 

  Vijay

  • November 05, 2020 21:20

  Latimer thanks a lot for posting this!

  For reducing visibility to certain accounts such as Federal Accounts you can "exclude" them from other teams in the SuccessTeam account set criteria and create a separate SuccessTeam to just handle visibility to Federal accounts to the right people you add to the team..

  Our Permissions are "action" permissions ie they control what actions user can take or not take.. The "record" level filtering is managed by SuccessTeam account criteria and the "Extended Scope" criteria you define while creating the SuccessTeam.

  Your suggestion for managers is spot on. I think we can certainly derive permissions for users who are managers above the current user.. We don't do that today.. I agree it is the right approach.

  0

  Comment actions Permalink
• 

  Latimer Luis

  • November 06, 2020 21:07

  Thanks, Vijay. I think that excluding them from the team is certainly one approach, but fed customers was just an example. We'd like to be able to ensure that an account owner can't find information about accounts they're not associated with. Our admins have locked our CRM down in a similar fashion and they'll eventually want to do the same for Totango. 

  0

  Comment actions Permalink
• 

  Vijay

  • November 06, 2020 21:18

  Latimer we had enhanced our team setup to add or limit accounts dynamically where each user when they log in only see accounts they have been assigned or have an account role. This might work for your scenario.. Give it a try!

  

  0

  Comment actions Permalink
• 

  Latimer Luis

  • December 10, 2020 18:52

  Hi Vijay - Has this change been released already? I'm trying to find this same option but don't see "Logged-in User" as something I can select. I can only select specific team members. 
  
  

  0

  Comment actions Permalink
• 

  Vijay

  • December 10, 2020 19:16

  Latimer I still see it on my test instance

  

  I suspect it may be due to the employee hierarchy not being open

  

  0

  Comment actions Permalink

Please sign in to leave a comment.