Administration - Administration - Group - Help Desk, Privileges action - Modules - Incident Management - Process related Object - Incident - "Add Assignment" (alphabetical) in the Create Action column and then enable Execute and update, read should already be set.
1 of 1 people found this helpful
Thank you so very much for showing me that, I really appreciate your help! please allow me ask one more question related to this. this is what I noticed on our settings:
I am wondering now why all our Helpdesk associate are able to Add Assignment even if this is not properly set? Is there an additional setting to this? Thank you so very much.
It could be from their role. If any role they belong to gives access but the group does not, they have access. Only takes one place to give you access to have access.
As a practice, we've limited all permissions to be assigned only through roles. This limits the locations someone would be assigned a permission. To track down further how the some are gaining access, try to find a user that has access, but the least amount of roles and groups. Then go through and look at the permissions for each role and group. You should be able to find it there. Of course, if some of your members of the HD group also have the Administrator role, they would no doubt be able to access the action.