How to secure default Administrator account?

Question

The issue described below is experienced on Odoo 12 CE.
The default Administrator, who is created upon DB creation is of type Administrator/Settings. For simplicity we name it User1. User1 creates User2. User1 gives Administrator/Access Rights to User2. Now User2 is able to:
- Delete User 1 ?!?!
- Self promote to Administrator/Settings ?!?!
How can we prevent User2 from both actions above and thus secure User1?
Thank you in advance for any suggestions.

Mihail Tsvetkov · Accepted Answer

Balvant, you are wrong my friend! I have tested it 100 times and it always happens. Now check the screen shots in the exact order. Fresh Odoo12 CE. At the end Administrator is deleted and gone...
https://prnt.sc/przud5
https://prnt.sc/przums
https://prnt.sc/przuyv
https://prnt.sc/przvax
https://prnt.sc/przvmv
https://prnt.sc/przvz8
https://prnt.sc/przw8y
https://prnt.sc/przwhy
So, please feedback is necessary...how to secure Administrator account !!!

Balvant Ramani · Answer

There is no chance to Delete Administrative account in odoo. Odoo does not allow. so don't worry about it

المنشورات ذات الصلة	الردود	أدوات العرض
Admin rights changed in error تم الحل rights administrator	2 أكتوبر 24	1230
Custom Access Rights are not visible in normal mode, Only visible under Developer mode (v16) access rights	0 أغسطس 23	8
How to learn Access Rights access rights	2 نوفمبر 22	3225
In a project only the admin can see the team members but the user can't access rights	2 مارس 15	4474
The requested operation cannot be completed due to security restrictions. Please contact your system administrator. document type: users, operation:read. error access rights	1 مارس 22	3194

لقد تم الإبلاغ عن هذا السؤال

هل أعجبك النقاش؟ لا تكن مستمعاً فقط. شاركنا!