Have you read this page?
There are 3 key steps to setting up Groups so that you work correctly.
- Create a group for each team of users and add the appropriate users to the group.
- Create a role and select the appropriate access levels. Assign that role to each group.
- Add the groups to records in your SuiteCRM instance. You can use the Mass Assign on the List View to do this. Going forward the groups will automatically inherit based on your SecuritySuite Settings. You can also use logic hooks, workflow, or do a direct database insert into the securitygroups_records table if doing a one-time initial setup.
A Typical Setup:
Intro video:
This “SecuritySuite Settings” will probably answer your question.
Additive Rights
User gets greatest rights of all roles assigned to the user or the user’s group(s)
Strict Rights
If a user is a member of several groups only the respective rights from the group assigned to the current record are used.
New User Group Popup
If this is checked, a Security Groups popup will open when a new user is created, allowing you to add the user to a security group(s)
User Role Precedence
If any role is assigned directly to a user that role should take precedence over any group roles.
Filter User List
With this selected, non-admin users can only assign records to users who are in the same group(s)
Use Creator Group Select
Adds a panel to a record creation screen if a user is a member of more than one inheritable group that allows a user to select one or more groups (that the user belongs to) that should be associated with the newly created record. If a user is in just one group the normal inheritance rules will instead be applied.
The new record will still inherit from the Assigned To user or Parent record if these options are set. This setting only overrides the Created By setting.
Inherit from Created By User
The record will inherit all the groups assigned to the user who created it.
Inherit from Assigned To User
The record will inherit all the groups of the user assigned to the record.
Other groups assigned to the record will NOT be removed.
Inherit from Parent Record
E.g. If a case is created for a contact the case will inherit the groups associated with the contact.
Inbound email account
Locks down inbound email accounts in the email client to only list those that belong to the same group as the current user.
Default Groups for New Records
Set groups that should always be attached when a specific module record is created, e.g. you can set a group to be assigned to all newly created Account records.
Please let us know if it solves your issue.