Admin Security Enhancements
In this release, we have made some changes that enhance admin security. Here is an overview.
-
A non-primary admin with the “Special: Change Password, Log in as other Member” permission cannot log in as another admin from the People tab
-
A non-primary admin with “Accounts, People” permission cannot change the password of another admin (but the admin can still email a link to the other admin to reset the password)
-
An admin without without "Special: Permissions" permission cannot see/change "Role has these Admin Permissions" dropdown In My Lists | School Roles
Examples:
#1
A non-primary admin with "Special: Change Password, Log in as other Member" permission will see No Access instead of Login
#2:
A non-primary admin with “Accounts, People” permission will not see the password fields when editing a person (but the admin can still email a link to the other admin to reset the password)
#3:
An admin with "My Lists" and "Special: Administer School Permissions" but NOT "Permissions" permissions will not see the "Role has these Admin Permissions" dropdown above the "Role has these School Permissions"