Prevent view/editing of Superuser account
Permalink
It seems a really simple way to hand over a concrete5 site to the end user is to give them adminstrator role and disable all dashboard options the administrator should not be messing with i.e Themes
However, In Users/Groups an administrator can view and edit the super user account details, which is not ideal. Is there a way to change this?
Thank you in advance
However, In Users/Groups an administrator can view and edit the super user account details, which is not ideal. Is there a way to change this?
Thank you in advance
turn advanced permissions on and make more flexible editor groups.
Thanks for your reply.
I did look at this, but I couldn't see how they would help me, my administrator needs to be able to see "Find Users", and edit details of users - just not the admin superuser which could lock me out. Logically an administrator shouldn't be able to edit the superuser account email/password?
Under simple or advanced permissions, I couldn't see how to set this up, as what seems to be required is a filter on user data, rather than on page, area or block?
I'm only just getting started with Conrete5 so your help is appreciated.
I did look at this, but I couldn't see how they would help me, my administrator needs to be able to see "Find Users", and edit details of users - just not the admin superuser which could lock me out. Logically an administrator shouldn't be able to edit the superuser account email/password?
Under simple or advanced permissions, I couldn't see how to set this up, as what seems to be required is a filter on user data, rather than on page, area or block?
I'm only just getting started with Conrete5 so your help is appreciated.
yeah we dont get granular with permissions on the user manager... so you CAN change the permissions of the whole page it sits on to open or close it up to different groups, but no you can't dictate what actions groups/users can do within the user manger..
on an up note, i do believe that you can't delete the administrator account.
and if you have an admin group, any nefarious character could simply create an account with all group levels in there for them and get most access to the site. i suppose it wouldn't be a huge deal to keep anyone BUT admin account from changing admin password. If you can confirm we're not already doing that already go ahead and stick it in feature requests and we'll add it to the list.
on an up note, i do believe that you can't delete the administrator account.
and if you have an admin group, any nefarious character could simply create an account with all group levels in there for them and get most access to the site. i suppose it wouldn't be a huge deal to keep anyone BUT admin account from changing admin password. If you can confirm we're not already doing that already go ahead and stick it in feature requests and we'll add it to the list.
Thanks again for your help, will double check and do as you suggest.
Great product BTW!
Great product BTW!
