You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
#A tenant admin (role EvmRole-tenant_administrator, member of a none root tenant) can create a group for the tenant with the role EvmRole-super_administrator and a user in this group.
This user suddenly gain system level privileges that are way beond the scope of a none root tenant member, for example changing schedules or disable a entire appliance.
Btw. This is also possible using the API.
The text was updated successfully, but these errors were encountered:
evertmulder
changed the title
A tenant admin can create a user with role EvmRole-tenant_administrator
A tenant admin can create a user with role EvmRole-super_administrator
Jan 27, 2017
#A tenant admin (role EvmRole-tenant_administrator, member of a none root tenant) can create a group for the tenant with the role EvmRole-super_administrator and a user in this group.
This user suddenly gain system level privileges that are way beond the scope of a none root tenant member, for example changing schedules or disable a entire appliance.
![su](https://cloud.githubusercontent.com/assets/61044/21869321/5b62bda8-d857-11e6-867b-2da5605ed4f8.png)
Btw. This is also possible using the API.
The text was updated successfully, but these errors were encountered: