Control what your users can access and save time, money, and frustrations. Lock down sensitive data in SugarCRM or SuiteCRM to specific groups or teams. Supports unlimited assigned users, unlimited group assignments to records, custom layouts for each group, login/sudo capabilities and much more.
Introduction
Overview
Security Groups are the 3rd piece of the puzzle for a full three-tiered security architecture. The other 2 pieces are users and roles.
Groups define what records a user has access to whereas roles define what a user can do with a record (e.g. nothing, view, edit, delete). Think of Groups as what groups of users should have access to certain records and Roles as what they can do with those records.
With SecuritySuite, you can create a customized set up to support any sort of organizational structure that you may have. The many different options that come with SecuritySuite will make it easy to lock down your sensitive data to just those who need it while providing a bunch of additional features to make managing your company easier.
In additional to that, SecuritySuite comes packed with a host of great features needed to effectively run your CRM.
Custom Group Layouts
Great for both optimizing the interface by removing unneeded fields and for hiding sensitive information.
Multiple Assigned Users
This has been a long time limitation in SugarCRM and SuiteCRM, but not anymore.
Grant Admin Rights
Give users the ability to administer users, be admins for only certain modules, or even the ability to customize layouts only for certain modules
Setting Up SecuritySuite
Any organizational structure can be supported. Here is one example:
-
"This impressive add on is easy to use, extremely flexible, and huge time saver. This add on exceeded our expectations and is worth every penny!"
Read More Reviews
- Most Recent Love from Users
kacsoristvan- damien8105
- anri
- Administrador
- Stefano1
- einkauf2
12 years ago
Cannot see the video fully . Can see upto 2.20 minutes out of 4.12 .
12 years ago
Could there be some sort of issue with your network causing it to not load fully? I just watched it all from start to finish here.
12 years ago
Interesting. Is it possible to associate records with teams according to what team the owner of the record belongs to?
12 years ago
Correct, there are a number of inheritance rules and one of them is to Inherit from Assigned To User. This means that the teams associated to the Assigned To user get attached to the record upon assignment. You can see the Options doc to find the whole list of configurable options.
11 years ago
Hi Jason, Next question - we are using Kinamu Reporter. Is it possible to filter K-Reporter report results by Security Group. We are currently using the free version of Security Suite, and I don't see how to do this.
Thanks,
Michael
11 years ago
The KReporter available here: http://www.sugarforge.org/frs/?group_id=899 will have SecuritySuite support as of version 3.0.4. I believe that is due to come out any day. You will be able to filter on groups once that is available.
11 years ago
Hi Jason, Thanks for the prompt response and I will look forward to using Security Suite with K Reporter soon. - MIchael
11 years ago
Just a follow up, KReporter now supports Security Groups: http://www.sugarforge.org/frs/?group_id=899. The original Kinamu Reporter does not.
11 years ago
want to know whether field level access can be done in this security suite.. do help me
11 years ago
Sorry for the late reply. Somehow didn't see this question. Field level access is done by creating a custom view within Studio for each team/group.
11 years ago
Hi , can the 3 or more level hierarchy be set for the calendar ,suppose the flow works like ...A->B->C->Admin ....Admin can see all the activities on calendar under him. C can see all under him and so on. Is it possible ? I am not able to figure out a complete solution for it, though i have configured it for leads,contacts,etc. Thanks for help !!!
11 years ago
Not by default, but you could probably custom code something like that. There is a function in include/utils.php where the shared calendar pulls its list of users from. That may be the location to look. Not entirely sure off-hand.
11 years ago
Hello eggsurplus, i m mandeep .... i m using Security Suite 30 day Trail virsion on my local host , while creating new group Security Suite does not show me the Save button.... So that i can make my Group... pls help me.... Thanks in Advance...
11 years ago
Mandeep, were you able to figure this out? Sounds like a Repair/Rebuild may need to be done. There may also be file permission issues that you are running into on your host.
11 years ago
Hello eggsurplus, is there a way to use this product for free? If not, is it $250USD/year?
11 years ago
Sorry for the late reply. Somehow didn't see this question. You can try it for free for 30 days to see teams are the answer for you.
11 years ago
Sugar User A report to Sugar User B.User A is a member of Team C.So I think User B should be by-default member of the Team C as User A report to User B.It seems that Security Group Free Edition has not such functionality.
11 years ago
I understand why that would be a good way of doing things, but doing it that way would require some sort of caching/flattening of hierarchies to address the infinite levels of report-tos. It's a performance nightmare. Because of this User B needs to be explicitly added to Team C. This also helps to remove any ambiguity.
11 years ago
I understood your concern
11 years ago
great
10 years ago
Hello, How we can make multilevel hierarchy. I have 7 users A, B, C, D, E, F, and G. I tried, but looks I am missing some thing. I Made a Group 1 of A, B and C. Made a Role 1 with owner Rights for Group 1. Made Role 2 with Group Rights for User C. Now C can see records of A, B and A,B can see own records only. Its working Perfect. In Same way I made Group 2 for users D, E and F, where F can see records of D and E. Now I have to keep G above C and F. So that all records of A, B, C, D, E and F will be visible to G, But records assigned to G will be not visible to C or F. For this I made one more group having all these Users. Made its relationship with Role 1 (Owner Rights). Made relationship of User G with Role 2 (Group Rights). Issue: Now records which belongs to G is also visible to C and F (as C and F are also with Role2 having Group access rights). Also records created by D (user of Group 2) is visible to user C. Thanks for your cooperation in advance...
10 years ago
So you have G in the same group as C and F, but don't want any records created by G to be viewable by C and F? In that case, make sure that G's records are assigned to G via the assigned user field. Then the key part is that you don't want G's group auto inherited whenever G creates a record. So go to the user record for G and set the "Not Inheritable" check box for G and that group. Then whenever G creates a record it will not be assigned to that group so that the group will not be able to see it.
10 years ago
Is this functionality also available for the limited-functionality-edition? thanks
10 years ago
Yes, right now it is available in the limited release. The Sudo feature, custom layouts, filter searches by groups, group collaboration dashlet, hookup tool for custom modules, etc are in the Full Edition only.
7 years ago
So go to the user record for G and set the "Not Inheritable" check box for G and that group.
7 years ago
Go to the Security Group record and then down in the Users subpanel click on edit to set this.
10 years ago
Hello, We have installed K Reporter 3.0.6 and Security Suit. When any user is creating any report, it is showing all records to him. The records in report are not showing as per Group. To make Security Suite working with KReporter, will we have to make any additional settings or coding ?
10 years ago
You will need to ask the KReporter folks about how it works with SecuritySuite. I have just been assured by them that there is something in place to make them work together, but I have not verified it.
10 years ago
Rob,
Here is how to enable Security Groups in KReporter.
Edit config_override.php in your root SugarCRM directory and add this line: $sugar_config['KReports']['authCheck'] = 'SecurityGroups';
Then save.
10 years ago
I'm having the same problem as Rob123456. I cannot get KReporter v3.0.6 to work with the basic SecuritySuite. Everyone can see each other's records regardless of group or roles. Please note that I have the default settings for both KReporter and SecuritySuite. Maybe there is a setting that I am missing.
10 years ago
Make sure to reach out to the KReporter folks about this. They need to add a simple change to the SQL that they generate to filter Security Groups correctly.
10 years ago
I just sent them an email. info@kreporter.org. Do you have a report writer that works with your team security? I will gladly pay for it. I just want something, anything to work.
10 years ago
Hi,
I just have Security Suite work well until we upgrade sugar to 6.5.17 . Now I just have purchased a new version of security suite, but can´t upgrade it. And, the instalation of a new version make the old toped work.
I need some help with this.
Thanks.
10 years ago
I don't see a 6.5.17 version of SugarCRM CE available yet. Where did you find that? It looks like 6.5.16 is still the latest version available here: http://www.sugarforge.org/frs/?group_id=6
Once they do release a 6.5.17 I will get SecuritySuite updated for 6.5.17 and then you would install that version on your 6.5.17 instance.
10 years ago
Ok, sorry, it´s 6.5.16 and the same problem.
10 years ago
OK, when you upgrade versions of SugarCRM it's pretty simple to upgrade SecuritySuite. Here are the steps:
1) Grab the matching version of SecuritySuite from your Purchases here. The file names start with the version of SugarCRM that it works for so if on 6.5.16 grab the 6.5.16_SecuritySuite_Full-Edition_v2.7.3.zip file. 2) Upload it in Admin->Module Loader 3) Click Install after uploading and follow the wizard
Once the install is done you can re-validate your license key and continue on with configuration. When just upgrading you don't need to go through any additional setup or configuration. Your previous settings will still be in place. If you run into any issues feel free to start a support case here: https://www.sugaroutfitters.com/support/securitysuite. Or you can email me at solutions -@- eggsurplus -.- com (no spaces or hyphens).
Hopefully that gets you on your way!
-Jason
9 years ago
Warning: copy(themes/default/images/SecurityGroups.gif): failed to open stream: Permission denied in /.../ModuleInstall/ModuleInstaller.php on line 2017 Failed to copy cache/upgrades/temp/s6UkMU/include/images/SecurityGroups.gif to themes/default/images/SecurityGroups.gif
we want to install the module, but the process stop at 17%
9 years ago
Hello,
That shows that your file permissions on the server are not permissive enough so it is failing to copy files. Here are some links that will help correct that:
http://support.sugarcrm.com/04_Find_Answers/02KB/02Administration/100Install/Required_File_System_Permissions_on_Linux http://support.sugarcrm.com/04_Find_Answers/02KB/02Administration/100Install/Setting_File_Permissions_and_Ownership_in_config.php/ http://www.shanedowling.com/sugarcrm-permissions-script/
Hope that helps! -Jason
9 years ago
we have tested the security-suite on a test-instance and want to install on a production server, can we use the same licence key, or have we click the "reset"-button on the orders-page?
9 years ago
Absolutely! The same license key can be used for your dev/test instances and 1 production install.
9 years ago
if i assign a contact to a security-group, the documents "under" this contact will not auto-assigned to this security-group. is there an option for this behavior?
9 years ago
There is not anything that will handle retroactively adding a group to a record and then having that group cascade down to all child records. That is something that is always being investigated, but the best option is usually dependent on each company's unique usage of SugarCRM. Usually this is only needed upon initial setup/install and can be done via a SQL script or manually.
Some folks do have custom workflows to do this or they use Process Manager to automatically assign groups depending on various factors like yours.
9 years ago
Hello,
I have a question : How ti implement security group hierarchy?
My requirement is as following : let us take an example I have only one module "Node" I have a few teams with hierarchy.
Ex. "Team A" has 3 members "Amember1", "Amember2", "Amember3" and two admin of Team A "Aadmin1", "Aadmin2"
members of "Team A" can see all data in same team. Admin of "Team A" can see all data in same team. members of "Team A" can not see data of Admin. And "Aadmin1" can not see data of "Aadmin2" and vice-verse .
Again there is N level of team hierarchy.
I have implemented this as follows :
SG-A-Nomal security group has a role with all access to Module "Node" SG-A-Admin security group has a role with owner access to Module "Node"
But the problem is when I reached to level 4 heairchy I will have to create multiple security groups and assign them to level 4 admin Means Level 4 Admin will have all access to level 3, level 2, level 1.
You can also reach to me at ramakantgangwar@drishti-soft.com --Ramakant Gangwar
9 years ago
For anyone else wanting to know about how to do this setup see: https://www.sugaroutfitters.com/support/securitysuite/1578
7 years ago
Hi, is there any soft copy available for sercuritysuite adminstration ?
7 years ago
Sorry, there isn't. What is available here in the docs will be it.
7 years ago
Hello! I'm using SugarCRM 6.5.20. I installed the module "6.5.18_SecuritySuite_Full-Edition_v2.8.1.zip". I can work with "Security Groups Management" and with the Rols too.
But now, I don't see "Security Groups: Mass Assign" in the diferentes modules like: leads, camaigns or whatever. Can you help me please?
7 years ago
Hello, make sure to instead install the 6.5.20 version of SecuritySuite. Once installed it should show for sure for admins. It will show for regular users only if they have appropriate rights to the Security Groups module in the roles grid. If you still have issues after upgrading and doing a Quick Repair & Rebuild then do create a support case here and we can look into it more: https://www.sugaroutfitters.com/support/securitysuite/create
3 years ago
Hi
We need solutions can you please help.https://community.suitecrm.com/t/hierarchy-implementation-of-the4-layers-in-suitecrm-using-security-groups/76157
3 years ago
Hello. I responded to your scenario there. This is also a nice starting point for figuring out how best to implement SecuritySuite for any scenario: https://www.sugaroutfitters.com/docs/securitysuite/example-of-a-typical-setup
3 years ago
Hi Jason,
Thanks for the reply,
but we have already read the document & as per the document it's only for 3 layers of the hierarchy setup, we need the 4 layer hierarchy setup for in SuiteCRM, we have already raised the query for in the community of the suite CRM.
Please guide us if we buy this plugin the 4 layers of the hierarchy is achievable or not?
3 years ago
Always happy to help. I replied on that community thread and via email on how you can support 4 layers or 100 layers. It's all about creating groups/teams at the lowest level that you functionally need. Hopefully the example I provided based on your screenshot of your structure helps.