The tiles used to edit contact information on a constituent record don't apply site security

When adding a user to a system role with specific feature permissions granted, CRM administrators have the ability to restrict the user’s access to those features based on site. CRM users who haven't been granted permission to be able to edit constituent records are able to do so via the tiles on the summary tab of a constituent record.  
This has been resolved. Please download and install the latest Service Pack which contains all fixes from previous patches. If you are running an older version, download and install the latest version and then the patch.

Steps to Duplicate

  1. Log into CRM and navigate to the Administration functional area.       
  2. Select Security, and then select System Roles.         
  3. Locate a system role that grants users the ability to view all information on constituent records regardless of the constituent’s site assignment.       
  4. Go to the System Role.       
  5. Select the Users tab, click Add and search for an application user that can be used for testing. Preferably the user is not a System Administrator and does not belong to any other system roles.
  6. On The ‘Record access’ drop-down menu for  ‘Site Security’, ‘Constituent Security’, and ‘Accounting element security’ should be set to all records.         
  7. After adding the user to the view only role, click the user’s name under the Users tab to go to the application user record.       
  8. Select the task from the left to run CRM as that user.       
  9. When logged into CRM as the test user, navigate to the Constituent functional area and select the Constituent Search task.       
  10. Enter any search terms, and click Search.   
  11. Select a constituent and go to the constituent’s record.   
  12. On the Summary tab click pencil icon at top of the page and edit constituent contact info.

Environment

 Blackbaud CRM
 4.0
 4.0
 SP15
 4.0.170

Was this article helpful?