Hello,
I have the following security requirements that I need to implement in our module:
I created a Business Unit called "IT Department" that has 4 users as follows:
- User 1: Is a director and has an admin role assigned and he will be able to see all the Team data under this BU. (Business Unit level access)
- User 2: Is a manager under the director (User 1) and he should not able to see User 1 data as he will be able only to see User 3 & User 4.
- User 3 and User 4 should only see their own data.
I am still stuck on how can I restrict access for User 2 to not see User 1 data and allow him to see the normal team members' data?
If I created a custom security role for User 2 and gave him everything at the BU level then he will be able to see User 1's data again.
Note: User 1 cannot be assigned to have access to the Organization level only the BU that he belongs to.
Could you please advise what will be the solution to the above requirements? I would greatly appreciate it if you could provide an example.
Best regards,
EBMRay