Hey everyone,
So our small company has two servers both running WHM hosting multiple client accounts on each. Before I came onboard, everyone used the root credentials. Even the freelancers that needed to work on accounts or change plugins on WHM got the root credentials.
Needless to say, I found this unacceptable, and wanted everyone to have their own credentials for logging and permission purposes. So I created user accounts for everyone following this post here.
This works well for myself, and the three other people in the office, as we all need full root access to the entire WHM panel anyways. Here is my problem:
We have two other people that I created user accounts for that need to access WHM. They typically assist us with firewall configuration, plugin configuration, and sometimes other things as well. They need to be able to see all accounts, but I would like to restrict their permissions to allow everything except Package creation/modification, creating accounts with shell access, and password modification.
As far as I'm aware, the resellers file in /var/cpanel houses ACL for each user. I tried to restrict their permissions via resellers permissions panel in WHM, but after it disallowed them to see all accounts, as this overwrote the "user:all" line in the resellers file with their updated permission set.
Is there any way to allow them to see all accounts AND restrict their permission sets?
So our small company has two servers both running WHM hosting multiple client accounts on each. Before I came onboard, everyone used the root credentials. Even the freelancers that needed to work on accounts or change plugins on WHM got the root credentials.
Needless to say, I found this unacceptable, and wanted everyone to have their own credentials for logging and permission purposes. So I created user accounts for everyone following this post here.
This works well for myself, and the three other people in the office, as we all need full root access to the entire WHM panel anyways. Here is my problem:
We have two other people that I created user accounts for that need to access WHM. They typically assist us with firewall configuration, plugin configuration, and sometimes other things as well. They need to be able to see all accounts, but I would like to restrict their permissions to allow everything except Package creation/modification, creating accounts with shell access, and password modification.
As far as I'm aware, the resellers file in /var/cpanel houses ACL for each user. I tried to restrict their permissions via resellers permissions panel in WHM, but after it disallowed them to see all accounts, as this overwrote the "user:all" line in the resellers file with their updated permission set.
Is there any way to allow them to see all accounts AND restrict their permission sets?
