this can easily be achieved by setting permissions on editing. You can limit editing/creating of users to a specific subtree. E.g. /user/editor users/. That way users who have rights like this can add and edit other users in that specific place, but nowhere else.
It sounds easy, but I'm not quite sure how to attack this.
Have created a new role "superuser" the problem I'm facing right now is that if I try to add a new user policy for the "superuser" role, it's given no limitation all the time. Is this right? doesn't this mean that if I give someone user access, they can all create admins?
I have of course added a user group with some users in it.
Am I attacking this from the wrong angle?
You must be logged in to post messages in this topic!