Set default roles access to none

As a model builder and workspace admin, i need newly created modules, lists and actions not to be accessible to any role except the full access role.

This is necessary to follow security guidelines and best practices of "least privilege" (you only have acces to what your eligible to).

Currently the opposite is done in anaplan and when creating new modules in anaplan, all roles have write access to these by default.

This requires extra check steps on the model building tasks to then remove for each role the access for each module.

If missed (which can definitely happen), then some users may have access to part of the models they are not supposed to and this can lead to potential incidents in anaplan applications.

Changing the default setup behaviour would go a long way to increase security and reduce o

Additional security checks and/or incident

Comments

rob_marshall

@david.savarin

I believe it is already that way...If you create a module, every role defaults to None until the admin changes it.

Module:

List:

And the same is true for Actions.

david.savarin

@rob_marshall : that's completely correct ! we must have missed how this is working. One less item on the list 🙂

andrewtye

Oddly I sometimes wish it was the way round you don't want it to be as it's the one thing that's often forgotten about and with UX being so separate it doesn't really matter much any more if a user can/can't access a module.

Quick Links

New ideas

Calendar Weeks in UX date fields
If you select a date in the UX it would be helpful to display the calendar week to the left of it, like in Microsoft Outlook.
Assistance Required for Understanding User License Roles at Tenant Level - Anaplan
Team - As per my understanding, user roles should work as described in the table below, but it is not working as expected. Our expectation is to assign users to a read-only role to restrict their access to a specific model, instead of creating user roles within the model. Any insights would be greatly appreciated. Thank…
Text input on total level
Dears, We would like you to enable text input on text summaries. Could you please consider adding “text input” button for text type summary method? This will help a lot for better navigation, for example when commenting data on total level like P&L total figures.