Can we allow Act As to be delegated at Sub Account Levels and not just Global Account admin?
@apaglione No, the User - Act As permission is handled at the root account level and can only be granted at the root level of your Canvas instance.
If you do enable it, be extremely careful as it can allow users to gain access to subaccounts that they won't normally have access to. This may violate your institution's policies. Hope this helps!
Hi @apaglione,
I just to expand on @melodyc_lam's reply a bit, as I know this is a feature that's been asked about quite a bit over the years...
On one hand, I totally understand the desire to limit root account admin access as much as possible, which this could help.
On the other hand, when thinking about hot it could/would work, things can get very complicated very quickly in the varied scenarios that happen often in Canvas. For example, users are often enrolled in courses belonging to different subaccounts (which is why all uses really live in the root Canvas account. if subaccount A admin acts as a user who has an enrollment in subaccount A, would they get to see the other courses the user is enrolled in for subaccount B and C as well? From a strict access perspective, the answer would probably be "no", but to truly get the user's identical experience for support issues, the answer would have to be "yes".
It could be argued that root admins could have some option checkboxes to set and control some of the above behavior as they want to, but that would likely also complicate the codebase very quickly, which I'm sure Instructure wants to avoid.
Depending on the size of your school, the approach we use may work for you, as it's somewhat a blend of functionality and security. We give our subaccount admins their "normal" permissions at the subaccount level. In addition, we created a custom admin role with just a few permissions, including acting as users, and enroll our subaccount admins with that role in the root account. This may get unwieldy for larger schools/institutions, but it does work for us and it does help make it explicitly clear to everyone the permissions we're giving to each admins and at what level those permissions come in at.
So the bottom line right now is exactly what Melody said... At this time, this can't be done at the subaccount level. That could change in the future though, and there are some workarounds like the one I mentioned that may help.
I hope this extra info helps make things slightly clearer for you.
-Chris
When viewing a student submission, "Error while processing or retrieving the document" is shown in Speedgrader. The PDF can be read when downloaded, but this slows grading time down a lot. What can I tell the student to do differently? Is this a known bug?
Does anyone have suggestions for bulk aligning questions at the quiz level, not the item bank level? I don't know much about API keys, but would one of these work for a bulk alignment? We have a school that is preparing for accreditation next year and they must get their quiz questions aligned to outcomes. We know they…
The most recent quizzes and question banks (including renames) are not showing up as options in the Course Import Tool. As I was creating a new quiz in one course (Classic), I went to add the questions from the Question Bank, but what I needed wasn't there. I went back to the other course to make sure everything was…
In the wake of the recent Canvas security incident, many instructors are rethinking how they protect their course materials and ensure continuity for students if the LMS becomes unavailable. A common question we’re hearing is how to effectively back up courses “just in case,” especially with an eye toward re‑distributing…
Hi all, Quick question about the Gradebook color status for a 2-part checkpoint discussion. If a student completes the first due date (initial post) but does not complete the required replies by the second due date, is there any way for Canvas to automatically show a color (e.g., missing/late) instead of staying as…
