Problem with security group

SuiteCRM Forum - English Language Developer Collaboration
1

hi everyone

please help me:

i have a user and have 2 security group:

  • Group A - role market lead : can view account and oppotunity
  • group B - role AM: can add, update account

Case 1: security suite setting:

  • uncheck Additive Rights
  • check Strict Rights
  • check User Role Precedence
    Then user can’t see oppotunity module

Case 2:

  • check Additive Rights
  • check Strict Rights
  • check User Role Precedence
    Then user can see other module like Leads

Case 3:

  • uncheck Additive Rights
  • uncheck Strict Rights
  • uncheck User Role Precedence
    Then user can’t see Oppotunity module and can’t create Account

I just want user can update/view account and view opp

Please help me how to config security suite setting!

thanks!

2

3-tier security has several “aspects” to it: you don’t even mention one of these aspects: which security groups are assigned to the records. This makes all the difference.

If you’re not even paying attention to security groups assignments (on records, not on user memberships) then you’re not following the logic. Probably the records you’re seeing are the ones the user owns.

See for an introduction
https://www.sugaroutfitters.com/docs/securitysuite/example-of-a-typical-setup