Hi All,
We are setting up teams in a large organization where one instance is used by many teams to developer various scoped applications. To manage application access for developers, we are using delegated development.
Challenge: After giving "manage ACLs and Roles" access developers are read the ACLs but not able to edit or create new ACLs.
When using delegated development, is security admin role is still required to edit ACLs? If yes, how do I control that developers are able to edit ACLs only for their application not other applications.
I know this is about a year old, but wanted to revisit this. The above two suggestions would really not be the approach I would go with. When you setup a role inside of the application there is a checkbox that you can select that elevates the privileges. I would use that and assign that role to the users to control and give this ability. See screenshot from a person demo instance of mine.
