Stop Sharing Information

**alsobrooks** · 2006-06-23, 03:02 AM

Is there a way for users to only see their own leads and contacts and oppts.?

Right now everyone can see everyone's stuff but I want to make it so only the admin can see everyone and the rest of the users see only their own information.

Is this possible?

**stevec** · 2006-06-23, 11:27 AM

For info, that's a feature of the private groups subsystem of groups in the pro version of sugar.

longreach · 2006-06-23, 12:49 PM

Surely all you need to do in OS is to set ACL values to OWNER?

**frb** · 2006-06-23, 01:15 PM

... except you always need to share it with a few others(your group, your team, whatever you call it) not only for yourself. That's what is still missing in the OS version

**alsobrooks** · 2006-06-24, 06:09 AM

I appreciate you feedback.

I have no clue what you are saying however!

I would be more than happy to pay someone to help me with this.

I am using SugarCRM 2.4 on a linux server.

Please, if anyone is interested, let me know ASAP!

Thanks,

Sean

**stevec** · 2006-06-26, 10:29 AM

ACLs are Access Control Lists. They are used in roles to assign rights to different kinds of users.

For example, you can create a 'guru' role. This will have all ACLs set to rull rights for all talks.

You might have a standard users. This will have read and edit rights to everything, but only delete rights to contacts and accounts they have assigned to them. Also, they might have exports disabled (a security feature to stop sales staff dumping a list of all contacts and moving on to another company).

You can use these sort of features to achieve private groups - which are not available in the open source version.
what you do is create a standard user role which has read rights for objects they are the owners of. That way, they cannot access records created by - or assigned to - other users.

of course, if you use the pro version of sugar you get groups proper. Here, you can create 'groups' and assign users to any number of groups. Then, when creating or editing records (contacts, leads etc), you can assign them to either the 'global' group (everyone is a member so everyone can see the record); user defined groups (e.g. NW region sales, SE region sales, support, etc) - or private groups, where only the assigned user can access the record.

**alsobrooks** · 2006-06-26, 10:20 PM

Thank You SteveC

That explantion really helped a lot!

I appreciate your time!

Sean

**sugarcare** · 2006-06-26, 10:48 PM

Originally Posted by stevec

You can use these sort of features to achieve private groups - which are not available in the open source version.
what you do is create a standard user role which has read rights for objects they are the owners of. That way, they cannot .

How do I create a contact for which I am the owner and no one can view it? In the OS versiojn

**stevec** · 2006-06-27, 10:30 AM

Go to admin, either create a role for these users - or edit the one they are already members of.
In setting up the role, set up delete, edit, list and view rights for the type of record to 'owner'.
Make sure the users effected belong to tha role - and their individual ACL screen reflects this (bottom of user detail view)