Rethink Permission Management
Managing permissions is very difficult and frustrating. It's almost as if you've designed the system for users that don't manage email for lots of domains. As an example, one of my clients owns several domains and I would like to give them access to manage their users, groups, and mailing lists. That is made up of 10+ permissions that I would have to give across 2-3 domains. Now multiply that problem by 100+ domains each with different administrators.
PLEASE, PLEASE make this easier for me. I honestly want to go crazy each time I need to add a new domain to a group.
-
Vikram Goyal commented
I have defined a number of classes to segregate the accounts as per required settings & tweaks based on roles in the organization.
I have delegated some rights to minor admins where I need to to allow them to change the class of an account to only a particular class if it belongs to default class.
The issue comes when I provide this right of class modification, they get complete rights in regard to class modification of an account which has some undesirable side-effects.
Is it possible to restrict the class modification to some particular class only & not any class.
Same issue goes with groups modification rights. Currently group modification rights include both appending as well as deleting members.
I want to restrict minor admins to be able to only append to some particular groups only & not be able take any action on the other groups.
-
Viggo Steffen Borgan
commented
I was hoping for better admin of several domains in the newer versions, but no luck. It's a nightmare to admin security, when hosting many domains.