Author Topic: EPIC Security  (Read 505 times)

0 Members and 1 Guest are viewing this topic.

Offline Tom Fisher

  • Frequent Flyer
  • ***
  • Posts: 263
  • Karma: +32/-0
EPIC Security
« on: January 28, 2019, 04:40:45 pm »
I don't have an easy way to test this out - and I think I know the answer - but wanted to ask.

If you give a non-admin user the rights to the security area in Epic - can they then make themselves an admin?
Tom Fisher
The Tech Frood
tom@techfrood.com
www.techfrood.com

Offline Jeff Golas

  • Administrator
  • Scalliwag
  • *****
  • Posts: 3032
  • Karma: +345/-0
    • JKJ Website
Re: EPIC Security
« Reply #1 on: January 28, 2019, 05:29:41 pm »
From a 10,000 foot view most likely, although I think Epic's permissions can be more granular than that. Are you trying to give someone like a password reset role?
Jeff Golas
Johnson, Kendall & Johnson, Inc. :: Newtown, PA
Epic Online w/CSR24
http://www.jkj.com

Offline Tom Fisher

  • Frequent Flyer
  • ***
  • Posts: 263
  • Karma: +32/-0
Re: EPIC Security
« Reply #2 on: January 28, 2019, 05:52:49 pm »
Basically agency wants a power user to have access to everything except accounting.  but if they have access to security - it seems pointless if they can then just grant themselves access to accounting... or reset the accountants password... or create a new user with access to accounting ... etc.
Tom Fisher
The Tech Frood
tom@techfrood.com
www.techfrood.com

Offline Jeff Golas

  • Administrator
  • Scalliwag
  • *****
  • Posts: 3032
  • Karma: +345/-0
    • JKJ Website
Re: EPIC Security
« Reply #3 on: January 28, 2019, 06:22:05 pm »
Yeah if they'll have the ability to create a user or reset a password, thats pretty much god mode. A couple ways around that are I think you may be able to have a user mostly do all that except for create users and reset passwords, OR limit them by Agency/Branch.
Jeff Golas
Johnson, Kendall & Johnson, Inc. :: Newtown, PA
Epic Online w/CSR24
http://www.jkj.com

Offline GeorgeW

  • True Believer
  • ****
  • Posts: 841
  • Karma: +117/-0
    • AssuredPartners NL
Re: EPIC Security
« Reply #4 on: January 30, 2019, 10:37:12 am »
They would not have the ability to change themselves to an enterprise admin. Since they would be logged in as themselves it would advise the user cannot be edited because the user is currently logged into the system. However, they could still make changes to security as you indicated. Unless this person will actually be making security changes for others, I can't imagine why they would even need access to security.
George Watson
AssuredPartners NL, Louisville, KY
Epic Online 2018 (MU5)