Admin user can add/remove groups with security_admin role - Known Error

Admin user can add/remove groups with security_admin role Description Admin user can add/remove groups without security_admin role

Steps to Reproduce

1. Log in as admin user > Elevate to security admin 2. Go to sys_user_group.do > Create testSecAdminGroup with security_admin role 3. Remove security_admin elevation 4. Go to sys_user.list and open joe employee

5. Edit group > Add testSecAdminGroup in sluchbucket Expected - fails with message explaining that non-security_admin users cannot remove security_admin role Actual - adds group with security_admin role

6. Edit roles > Remove testSecAdminGroup in sluchbucket Expected - fails with message explaining that non-security_admin users cannot remove security_admin role Actual - removes group with security_admin role

Workaround This problem is currently under review and targeted to be fixed in a future release. Subscribe to this Known Error article to receive notifications when more information will be available.