Re: BES Express 5.0.3 Security Role Problem?
I'd also be interested in this. I've created a role with the minimum of rights, just to allow the helpdesk to create new users & do device activations. It looks like the delete user right allows the user to delete any account, including the admin accounts.
I suppose I could create a group that contains only the handset users, and does not contain the admin user(s), and give the helpdes role rights to only that group - but what happens if the helpdesk user deletes a user (which is in this group), then recreates them? The new user wouldn't be in the handset group, and thus helpdesk wouldn't have visibility of them, surely?
EDIT: Actually it looks like the Delete User right is universal, and can't be limited to groups. So your role can either delete ANY user it wants, or none at all.
Last edited by cheeley; 08-16-2011 at 10:48 PM..
|