Unfortunately, I don't believe this is possible. The reason for the others is to prevent "Rights Escalation". Unfortunately, CIC wasn't originally designed with the detailed delegation of administration in this way in mind.
A similar issue is that many folks want the helpdesk to be able to reset passwords, and nothing else. This is a common reason that folks used to attend the ICELib training - so they could write a mini password-changer!
Perhaps the "easiest" solutions would be to define what, exactly, you want your users to be able to edit and then write a custom ICELib application that exposes only those attributes.
Sorry I can't be of more help.
------------------------------
Paul Simpson
Senior Technical Instructor
------------------------------
Original Message:
Sent: 06-17-2021 04:36
From: Pavel Broska
Subject: How to disable button "Security Rights"
#Peopleandpermissions
#Administration
#SystemAdministration
Hello everyone,
Tried to create role for supervisor and give them access to Interaction Administrator. To allow them basic control over users, workgroups, skills, in future will add control over Schedule and IP Tables. But not to edit "Security Rights" for Users and Workgroups.
Is it possible to disable "Security Rights" button for Users and Workgroup, if supervisor has access to Interaction Administrator?
Example bellow shows scenario, when Supervisor has granted administrative access for Users, Workgroups and Skills.
Select user "ITtest1" but can change one's "Security Rights". The goals is to disable button "Security Rights" similarly as "Administrative Access" and "Access Control".
//

//
Thank you for hints and help
Best regards
Pavel
#AskMeAnything(AMA)
#SystemAdministration
------------------------------
Pavel Broska
Alcasys Slovakia a.s
------------------------------