Enhance IOM Configuration and Profile Security
IOM security is very inadequate. Unless we restrict users of IOM Ciguration to supervisors, there is no security on profiles and no effective security on running imports. If a user is logged on to a workstation with IOM installed they can run any profile. Running a profile is very different from updating individual records. Running a profile is more like running Import or Global Change in RE and should have at least that level of security. We should be able to restrict users to a specific list of profiles they are allowed to run. As it is they see the entire list of profiles and could easily pick the wrong one from the list. IOM Security should only show users the specific profiles their user group has been given access to.
We’ve added Security functionality in ImportOmatic. You can now grant/deny access to all of the areas of ImportOmatic for RE user groups or individual users. You’ll need to update to version 22.214.171.124 or higher of ImportOmatic to take advantage of this new feature.
Thanks for the great suggestion!
-The Omatic Team
Nicol Hudson commented
I totally agree. We have a couple people here that will be creating profiles but they don't have nor will have Supervisor rights in RE. So at this time it is leaving IOM wide open since we can't restrict it to individuals with Supervisor rights.
I'd like to see you are able to allow some users to access IOM configuration of certain profiles, so they can control/edit/update the profiles themselves when a need arises.
Nicole Kennedy commented
I agree. This type of security should also carry over to List Management. If a user doesn't have rights to edit a constituent, then they shouldn't be able to do this in List Management either.
If there were only one user, security would not be an issue. But in my case, where I am the DBA making changes to the configuration and doing the import (at the server level), while there are many users who are "supposed" to be only generating reports - then security is a big deal. I'd like to see ImportOmatic, under Plug-Ins, either be grayed out, or not even be visible, to those who have no business being in it.