Control what your users can access and save time, money, and frustrations. Lock down sensitive data in SugarCRM or SuiteCRM to specific groups or teams. Supports unlimited assigned users, unlimited group assignments to records, custom layouts for each group, login/sudo capabilities and much more.
FAQ
- Custom module not showing in Hookup Tool
- Users cannot see the Security Groups subpanel
- How should a non-admin user be set up to assign groups to records?
- What does "Not Inheritable" mean?
- Why do I get the following error when I try to install SecuritySuite:"The uploaded file is not compatible with this version of Sugar: x.x.xx"?
- How do I resolve the following error on the ListView "MySQL error 1109: Unknown table 'SecurityGroups' in order clause"?
My custom module isn't showing in the Hookup Tool
SuiteCRM If you haven't already done the hookup for your custom module then this is due to a bug in SuiteCRM. To resolve follow these steps:
- Edit the vardefs.php for that module
- Remove 'security_groups' from the VardefManager::createVardef call
- Run Quick Repair & Rebuild a couple of times
- Go to Admin->Hookup Module
- Choose your module and click OK
- Run Quick Repair & Rebuild for good measure
Any newly created modules after SecuritySuite gets installed will not have this problem.
Users cannot see the Security Groups subpanel
Run Admin->Repair->Repair Roles then go to the different roles that you have created and set the Security Groups Management row to All (or Group) as appropriate for each cell. Any users currently logged in will have to log out and back in for the changes to be applied.
How should a non-admin user be set up to assign groups to records?
It depends on what groups the user should be able to assign. If the user can only assign groups that user is a member of:
- Access: Enabled
- Delete: None
- Edit: None
- Export: None
- Import: None
- List: Group
- View: None
If user can assign any group set List to All
What does "Not Inheritable" mean?
There are two places where this field can be found. The first is on the group itself. If the "Not Inheritable" field is checked then the group will not automatically be attached to any record. This can be useful for cases such as creating groups to assign roles to.
The second place where the "Not Inheritable" checkbox can be found is in the Users subpanel within a group. The meaning is similar here. If the checkbox is checked that group will not inherit for that user. This can be set by clicking on the "edit" link on the appropriate row in the Users subpanel. An example use case is when a manager needs to be able to view a group's activity but the group shouldn't see the manager's activity. By checking "Not Inheritable" the group will not automatically be assigned to any record that the manager creates.
Why do I get the following error when I try to install SecuritySuite:"The uploaded file is not compatible with this version of Sugar: x.x.xx"?
Data security is complex by nature. To ensure that your data remains secure core code changes have been made. Any SugarCRM upgrade will overwrite some, if not all, of these core code changes leaving confidential data available to users who should not have access to that data. To prevent that the version of SecuritySuite being installed must match the version of SugarCRM that is installed.
How do I resolve the following error on the ListView "MySQL error 1109: Unknown table 'SecurityGroups' in order clause"?
This error may occur on a Linux bases server due to the way SugarCRM creates queries on Linux. To resolve this error please make sure that the MySQL variable lower_case_table_names is set to 1. To find if lower_case_table_names is set to 1 run the following query against your MySQL database:
show global variables like 'lower_case_table_names';
See http://dev.mysql.com/doc/refman/5.0/en/identifier-case-sensitivity.html for more information.
-
"Good product, but we need to support 'Quick Create' feature. and raised up this request to your page." - lcyang
Read More Reviews
- Most Recent Love from Users
kacsoristvan- damien8105
- anri
- Administrador
- Stefano1
- einkauf2
11 years ago
In the Premium Version you are talking about "group calendar". Is this really one calendar with all members meetings or just a filter showing every single calendar of the groups members?
11 years ago
It'll filter just like the Pro version of Sugar does. The challenge on showing a single calendar is making each user's items stand out from the others. Could be an interesting feature, though.
11 years ago
Does this solve the problem of being able to assign multiple user to the same account? With this module, can I assign one user from one sales category/product group to XYZ Corp. and another from a different sales category/product group to the same XYZ Corp? And they would not be able to see each other's activities, contacts, opportunities, etc? So from the end users perspective, it is their own account, but from the administrators perspective, it is multiple sales personnel working on the same account?
11 years ago
With the right setup/planning you could add both users to the same group and add that group to XYZ Corp. It depends on the bigger picture of what your needs are. To answer the specific assigned user question; no, it doesn't act the same as if you were to use the Assigned To field. There are specific features to that field that only allow 1 person to every be assigned to a record. Such as filter on views by "My Items Only". Group/Team security can still mimic as if assigning multiples but there needs to be some structure to it.
11 years ago
Ok, for example - if we have two different sales partners (completely different product areas) that I would envision we would set up as two separate groups using this module. Then Jen, who works with partner 1, would be assigned group 1, and John, who works with partner 2, would be assigned to group 2. They both need to be able to see a list of their customers (search accounts they are assigned to) Can they do this with the same account record showing up for both of them?
11 years ago
Absolutely, this is where roles come into play. They'd both be assigned a role with Group rights to Accounts->List, Edit, etc. Group rights is one level higher than Owner rights. Then when they need to both work on the same account all that needs to be done is to add both their groups to that account. They can then see all accounts they are directly assigned to or that their group is assigned to.
11 years ago
Excellent. So if I set the role with Group rights to 'own' they see the same account record, but only their own contacts, activities, opportunities, etc. AND they can search and export lists of their customer account records, etc…sold if that is the case. Thanks for your quick response!
11 years ago
Yes, but make sure the rights are set to "Group" and not "Owner" and that both of their groups are assigned to the record that they should share. They'll then be able to see the group records as well as the records they are directly assigned to. Yes, they can search and export based off of the rights you assign in the roles.
11 years ago
We have now installed the module and I am experimenting with it. Is there a way to add groups as a search filter in the accounts advanced search? I would like to be able to export the accounts assigned to a group.
11 years ago
This is definitely a requested feature. Unfortunately, the SugarCRM architecture doesn't provide an easy, solid way to do something like this so it is taking some time to figure out a solution. I will be putting in another strong effort in the coming months into getting filters added to searches as it would be a really useful feature to have.
11 years ago
I can only agree to this! I'm currently evaluating SecuritySuit for my organisations needs and for us the whole module is rendered pointless without this feature. Hope you are able to sort this out!
9 years ago
Just in case someone else finds this conversation string, the feature to filter searches by groups was added last year.
10 years ago
When upgrading a Sugar C.E. with the corresponding Security Suite, what is proper way to proceed? I.e. I'm on C.E. 6.5.8, should I download and install the C.E. 6.5.15, then just install Security Suite 6.5.15? Thanks.
10 years ago
I'm on C.E. 6.5.8 with Security Suite 6.5.8, of course. Thanks.
10 years ago
Great question. Process is to upgrade SugarCRM first to the desired version. Then install the matching SecuritySuite version the install. No need to uninstall. In fact, that may cause issues by doing so.
9 years ago
Is Security Suite compatible with SuiteCRM? Will it be in the future?
9 years ago
Their stance is that anything that supports SugarCRM CE 6.5.16 will work with SuiteCRM. There are many SuiteCRM installs using SecuritySuite right now.
8 years ago
Just want to check this is still valid before I go for approval.
8 years ago
Hi there,
Yes, we have many SuiteCRM installs using SecuritySuite. It'll work great with it.
8 years ago
Hi There
I have full version of Security Suite and after configuring the search filters it's giving no results if I apply search with any selection. It says no results found. Can you tell me what the issue might be? is there any configurations which needs to be done to resolve the same?
8 years ago
Hi Nasir,
Make sure that the groups are assigned to the records. For example, if you are in Accounts and want all Accounts assigned to the West Sales group then for that to show you need to go to an Account and in the Security Groups subpanel make sure that West Sales is listed/added. If that is, then try a Quick Repair & Rebuild then try again. If there is still a problem then check the sugarcrm.log file for any errors and create a case here: https://www.sugaroutfitters.com/support/securitysuite/create