You’re offline. This is a read only version of the page.
Hello, I have a security role that has the read permissions on activities set to user layer.
Using the button add existing activity through the associated view, the user can see and choose all the systems activities, not only his activities, as supposed to.
Does anyone have any idea why the security role doesn't work properly on this view/screen?
*This post is locked for comments
I did a quick test on the Test environment and it seems to work as you are describing.
I did not mention Account -> Task, as it has Configurable Cascading with Cascade None set from OOB, so there was no need for me to change it.
Bear in mind this will not do anything to existing records, it will only fix the problem for new child records.
You don't seem to have configured Account > Task relationship either.
You can fix existing records by using a workflow (for example) to move them to a different Account and back again, but for closed cases or activities you would need to re-open them in order to be able to change them, then close again afterwards. Might not be worth the hard work.
Hello Adam Vero,
I'm currently working with Maria Miari on the same project. I did follow your instructions and changed 4 relations 1toN from Parental to Configurable Cascading and Reparent set to Cascade None. The relations are:
1. incident_Emails (Case to Email)
2. Incident_Tasks (Case to Task)
3. incident_customer_accounts (account to case)
4. Account_Emails (account to email)
User A still see all Account Acme's tasks, Account Acme's cases and activities related with the Account Acme's cases. User A is owner only to the Account, not to task, not to case and not to activities related to this case.
Its also possible the user is with in a Team so the information is being picked up there as the Team can have different levels of security.
My guess is that you have more than 472 Activity records in the system as a whole - you can easily verify this by looking at All Activities view using your admin user.
If I am right, this user is not seeing *all* activities. They are seeing all the activities they have rights to. Which in this case would include Activities which are "Regarding" records that this user owns.
For example, if user A owns an Account Acme and user B owns a Task regarding Acme, user A can see it. Also if there is a Contact for account Acme, user A can see that. And then they can see activities for that Contact. Or Opportunity, Case etc.
To prevent this, you need to reconfigure the cascading behaviours for each 1:N relationship from entity X to Y (eg Account: Appointment, Account: Email, Contact: Email, etc), and turn off the "Reparent" cascading which is causing this.
Hi, Thank you for your answer.
The permission doesn't come from another security role.
Hi, Thank you for your answer.
I have teams but my teams don't have security roles assigned. On the activities views the security role works normally. The user can see only his records. The problem there is only on the "add existing activity" button. You can see that on the look up window gives you the option to show only current users records. But I don't want the user to have the option to see other user's records.
Also Check the teams of that user if the user have part of any teams, then in that case also
they have higher security roles
Stay up to date on forum activity by subscribing. You can also customize your in-app and email Notification settings across all subscriptions.
#1
André Arnaud de Cal...
291,240
Super User 2024 Season 2
#2
Martin Dráb
230,149
Most Valuable Professional
#3
nmaenpaa
101,156
Share
Report
All responses (
Answers (