Why can I see cases that I shouldn't be allowed to see?

Make sure the data security policy Grant on Cases is removed from all duty roles that the user is associated with.

  1. Navigate to Tools > Security Console > Job > Clone Case Supervision (or Case Execution) Role > Data Security Policies

  2. Remove Grant on Cases > Save and Close.
  3. Navigate to Tools > Security Console > Job
  4. Clone the predefined Case Manager/Worker job role Role Hierarchy and Remove the predefined Case Supervision or Case Execution Role.
  5. Add the Cloned Duty role (created in the first step)
  6. Click Save and Close.
  7. Confirm the Job and Duty Roles don't contain Grant on Cases.
  8. Run the following jobs in the following order:
    • Import User and Role Application Security Data
    • Send Pending LDAP Request
    • Retrieve Latest LDAP Changes

    To trigger the jobs, navigate to: Tools > Scheduled Processes > Schedule New Process.