Showing results for 
Search instead for 
Did you mean: 

Have a security design question I wanted to confirm.

Community Manager
Community Manager
Originally posted by Kathryn Watkins


Have a security design question I wanted to confirm. Herbalife wants to restrict the IT system admins from seeing any data and make sure that they can only add / edit / provision users. If they just put users in groups that are assigned to the system security roles SystemPane and SecurityAdminPage, they can see the page but are not able to edit the users' provisioning.


As of the time of this posting, a user cannot manage Security or do any user provisioning without receiving the Administrator role.  A new Security Role is coming out in the 6.6 release called Manage System Security.  This System Security Role enables the OneStream Administrator to delegate the tasks of managing Users, Groups and Roles to non-administrators.  This feature will enable the IT system admin to only add/edit/provision users