Add Admin controls in Glip to restrict user capabilities

  • 0
  • 1
  • Question
  • Updated 2 years ago
  • (Edited)
Merged

This conversation has been merged. Please reference the main conversation: Glip Admin: Provide, or restrict access to specific features.

05/05/2017  2000+ Users  U.S. based account - we have just discovered there is no visible way to shut off account-wide broadcast access in Glip. Any user is automatically granted the ability to send a message with attachments to all other users - un-moderated.  This can be problematical in a large organization where that ability is otherwise fully restricted. Virus infected files can be attached, inappropriate content, disgruntled employees can use it.  Has anyone figured out how to block access to Glip without disabling the phone account it is attached to? I do not want to be the one explaining this to our upper management and Board of Directors. Any helpful suggestions would be really appreciated.
Photo of Cecile Glassy

Cecile Glassy, Champion

  • 21,294 Points 20k badge 2x thumb
  • Shocked at the lack of permissions controls

Posted 2 years ago

  • 0
  • 1
Photo of Mike

Mike, Official Rep

  • 93,928 Points 50k badge 2x thumb
Thanks Cecile,

I don't know exactly what  the outcome will be, but customizing access is something that our Product Team has been discussing for quite some time now.  I wish I could promise something but there's not ETA yet.

Mike
Photo of Cecile Glassy

Cecile Glassy, Champion

  • 21,294 Points 20k badge 2x thumb
Thanks Mike - this was a critical security issue for us and our Enterprise support solved it today, by denying GLIP access to all users other than SuperAdmins today via the backend access.    

This is a glaring security hole - that your DevOps team must address asap.   To allow ALL USERS to send a Glip message to ALL USERS un-moderated by default is a huge problem.

Inappropriate content (porn) may be attached, angry employee can send hate attachments etc. and broadcast to all users.  I would expect that RingCentral would be MORE proactive with this than waiting for a Feature Enhancement request to pass the all users vote in then wait 12 months  to get voted in. 

Here's our use-case:   teacher walks away from logged-in account to take a phone call on the wallphone, student uploads porn pix and sends to all users.    Yes we had this happen with email before we locked down that system last year.   Not willing to have this happen again in the messaging system. 

Usually I am the first among RingCentral fans but this is a horrible glaring security hole for any organization, but for an Enterprise level org - this is critical.

There should be an option or checkbox choice for Glip Message Moderation controlled at the SuperAdmin level.

WAKE UP RING CENTRAL.

This conversation is no longer open for comments or replies.