Limited Administrator *Manage Group* rights should not default to Full Access
When adding a *Limited Administrator* account in SEP Manager the option for > Manage Groups > Group Rights defaults to Full Access.
This seems a bit odd for a Limited Administrator. Can we let the let the access rights default to No Access (or Read-only)? This would make more sense, and is more secure.
For large environments it may also be an idea to have a cleartext filter with wildcard when choosing groups that can be administered by the Limited Administrator, the same way that is used when specifying groups for reports. e.g.
- Read Only set to *
- Full access set to My Company\Finance\*; My Company\HR\*
NOTE: By right-clicking on the Group (organizational unit) it is possible to set the access type for the g roup and subgroups to No Access.
But the point is that is should start with No Access and not with Full Access.
Comments
Hi, see Paul Murgatroyd's
Hi,
see Paul Murgatroyd's reply to this thread:
http://www.symantec.com/connect/ideas/sep-manager-...
Basically, right click on one of the groups in the "Group Rights" window will allow you to change rights to groups and subgroups.
--Luca
Would you like to reply?
Login or Register to post your comment.