In this article
The user permissions of MSP's client Organizations behave differently than a standard account's permissions. This article highlights key differences compared to a standard account's dashboard user permissions.
Site and Local Domain control are managed at the MSP Organization level
There's a toggle to universally control whether client Organization admins can edit or add Sites and Local Domains for themselves under the MSP's Whitelabel settings.
This toggle is off by default, which means regardless of the client's user permissions they cannot change or create Sites or Local Domains in their account. The toggle must be enabled to give clients these permissions. This setting applies to all Organizations under the MSP.
It's easy to forget about this setting during initial setup, so if clients reach out wondering why they can't update an IP address or Site's Policy this could be the reason.
Universal Lists are managed as part of Global Policies
Instead of client-level Universal Lists, MSP's manage Global Universal Lists that apply to all Organizations. Client Admins cannot view Global Universal Lists.
They're able to view but not edit Global policies, which are indicated by a globe icon in the dashboard.
Client Organizations that wish to block or allow specific domains across all their Filtering Policies should add the domains to each policy's Allow or Block List.
MSP client Organization user types
| Type | Details |
| Admin |
Permissions to manage:
View-Only Permissions:
|
| Policies Only |
Permissions to edit existing:
View-only Permissions:
|
| Read Only | View-only Permissions:
|
Comments
0 comments
Please sign in to leave a comment.