Technical Tip: Custom admin profiles, including those with elevated privileges, cannot view super_admin accounts

If a user can see accounts with higher privileges or broader access, it is considered a flaw in the system. Restricting custom admin profiles from viewing super_admin accounts is intentional and has been in place since v6.4.1.

• Log in to the system using an administrator account:

• Navigate to System -> Admin Profiles and select 'Create New'.

• Create a new custom admin profile (e.g., 'custom_admin1') and set all permissions to Read/Write and select 'OK'.

• Navigate to System -> Administrators and select 'Create New' -> Administrator.

• For comparison, two administrator accounts will be created: one with the super_admin profile and one with the newly created custom admin profile (e.g., 'custom_admin1').
• Create a new administrator user (e.g., 'superadmin2'), assign a password, and add it to the super_admin profile. Select 'OK'.

• On the same Administrators page, create another administrator user (e.g., 'customadmin') and assign it to the newly created elevated custom admin profile (e.g., 'custom_admin1'). Select 'OK'.

• Log out from the current administrator account and log back in using the newly created administrator account.
• Navigate to System -> Administrators and check the list of administrator users. The complete list of administrators will be displayed.

• Log out and log back in using the newly created custom administrator account credentials (e.g., 'customadmin').
• Navigate to System -> Administrators and check the list of administrator users. Users with the super_admin profile will not be listed. Only accounts with similar privilege levels will be visible.

Related document: