Question

6
Replies
54
Views
 Engincan Yildiz (EngincanY)
Tekfen Holding
Software Senior Specialist
Tekfen Holding
TR
EngincanY Member since 2018 75 posts
Tekfen Holding
Posted: September 17, 2019
Last activity: September 20, 2019
Posted: 17 Sep 2019 4:14 EDT
Last activity: 20 Sep 2019 7:16 EDT
Closed
Solved

Team management security

Hi,

I need to disable editing work group details for non-manager users. For this, I copied access role to object (@baseclass] and deleted pxEditTeamManagement privilege. But still a basic user can edit work group details via Teams tab. How can I restrict this behavior ?

Thanks.

Pega Platform Low-Code App Development Enterprise Application Development Dev/Designer Studio Security System Administration
Moderation Team has archived post, This thread is closed to future replies. Content and links will no longer be updated. If you have the same/similar Question, please write a new Question.
Posted: 1 year ago
Posted: 17 Sep 2019 15:16 EDT
Carissa Wenhardt (CarissaW_GCS)
PEGA
Principal Software Solutions Engineer
Pegasystems Inc.
US

Are there any other roles in the user's access group that still have the pxEditTeamManagement privilege?
Posted: 1 year ago
Posted: 18 Sep 2019 4:04 EDT
Engincan Yildiz (EngincanY)
Tekfen Holding
Software Senior Specialist
Tekfen Holding
TR

There are just manager and user access role. Since I can not save as the ARO to baseclass in WorkMgr4, I copied it into my application's ruleset and deleted the privilege. However it still exists in WorkMgr4 rule as dependent role.

Accepted Solution

Posted: 1 year ago
Posted: 18 Sep 2019 8:10 EDT
Carissa Wenhardt (CarissaW_GCS)
PEGA
Principal Software Solutions Engineer
Pegasystems Inc.
US

In the @baseclass access you copied into your access role, try setting the pxEditTeamManagement privilege level to 0.
Posted: 1 year ago
Posted: 17 Sep 2019 19:50 EDT
Susan Liu (SusanLiu_GCS)
PEGA
Principal Software Solutions Engineer
Pegasystems Inc.
US

Privilege 'pxEditTeamManagement' is created in @baseclass and is associated to OOTB roles PegaRULES:SysAdm4 as well as PegaRULES:WorkMgr4. Can you check both of roles?
Posted: 1 year ago
Posted: 18 Sep 2019 4:06 EDT
Engincan Yildiz (EngincanY)
Tekfen Holding
Software Senior Specialist
Tekfen Holding
TR

User have WorkMgr4 access role as dependent role and pxEditTeamManagement exists in that role. But I copied the ARO to baseclass into my application's ruleset and deleted that privilege.