Log in

Sangfor Support Center

Table of Contents
< All Topics
Print

[IAG] Administrators at the same level cannot edit policies created by others

Posted
Updated
Byadmin
Views1

Problem Description

Administrators at the same level cannot edit policies created by others

Process——

  1. View the page permissions of the test administrator are the same
  2. Local tests are editable
  3. Re-compare the permissions of the two test administrators. The only difference is in the organizational structure permission settings.

    705885b3ddce456bc5.png (28.74 KB)

    525295b3ddd0777b97.png (26.5 KB)

Root cause

Through analysis and testing, it was found that the permissions of administrators at the same level are as follows: administrators with smaller organizational structure permissions cannot edit administrators with larger organizational structure permissions; administrators with larger organizational structure permissions can edit administrators with smaller organizational structure permissions. [Size refers to the inclusion relationship]

solution

The customer's requirement is that administrators at the same level can edit each other. According to the requirement, they can directly check the same small test organization structure.

Suggestions and Conclusion

Regarding administrator permissions, you need to pay attention to the following points:
Administrator can view all policies created by common users
Administrators at the same level or commos at the same level can configure whether to allow others to view or edit
The administrator can create policies to control whether common users are allowed to view
When a common administrator tries to edit a policy created by an adminIstror administrator that he is allowed to view, it will prompt that your administrator level is lower than the creator of the policy.
Administrators with less organizational structure permissions cannot edit administrators with more organizational structure permissions
Administrators with greater organizational structure permissions can edit administrators with less organizational structure permissions [size refers to the inclusion relationship]

Original Link

https://support.sangfor.com.cn/cases/list?product_id=22&type=1&category_id=5958&isOpen=true