Comments
The reason why we need an additional System administrator role is because one cannot duplicate the System administrator today and restrict access. The system administrator is an empty role: No duties/privileges/tables – but it got access to everything.
We have tried to make a custom system administrator role with almost all standard roles available and tried to restrict access to HR, but this role cannot give other users the System administrator role if there are any access issues with the custom system administrator. Only System administrator can give System administrator role to users.
More customers are today letting us know that the System administrator should follow GDPR requirements (no access to HR and other sensitive modules).
Could also restrict access to other alternative sensitive tables/modules as:
- Module: Payroll.
- System administration > Inquires > Deleted attachments. (HR documents can be deleted and seen).
- Sensitive information other places?
The enhancements mentioned in this idea will really improve working with purchase agreements.
I would also add one simple but very effective improvement: create an additional form with the open purchase agreement lines. Most required information is handled on line level, but there is no form available to easily access the line information by the users. So please add a specific form with the agreement line information (item, effective dates, qty, remaining qty, price etc..)