Can we allow Act As to be delegated at Sub Account Levels and not just Global Account admin?
@apaglione No, the User - Act As permission is handled at the root account level and can only be granted at the root level of your Canvas instance.
If you do enable it, be extremely careful as it can allow users to gain access to subaccounts that they won't normally have access to. This may violate your institution's policies. Hope this helps!
Hi @apaglione,
I just to expand on @melodyc_lam's reply a bit, as I know this is a feature that's been asked about quite a bit over the years...
On one hand, I totally understand the desire to limit root account admin access as much as possible, which this could help.
On the other hand, when thinking about hot it could/would work, things can get very complicated very quickly in the varied scenarios that happen often in Canvas. For example, users are often enrolled in courses belonging to different subaccounts (which is why all uses really live in the root Canvas account. if subaccount A admin acts as a user who has an enrollment in subaccount A, would they get to see the other courses the user is enrolled in for subaccount B and C as well? From a strict access perspective, the answer would probably be "no", but to truly get the user's identical experience for support issues, the answer would have to be "yes".
It could be argued that root admins could have some option checkboxes to set and control some of the above behavior as they want to, but that would likely also complicate the codebase very quickly, which I'm sure Instructure wants to avoid.
Depending on the size of your school, the approach we use may work for you, as it's somewhat a blend of functionality and security. We give our subaccount admins their "normal" permissions at the subaccount level. In addition, we created a custom admin role with just a few permissions, including acting as users, and enroll our subaccount admins with that role in the root account. This may get unwieldy for larger schools/institutions, but it does work for us and it does help make it explicitly clear to everyone the permissions we're giving to each admins and at what level those permissions come in at.
So the bottom line right now is exactly what Melody said... At this time, this can't be done at the subaccount level. That could change in the future though, and there are some workarounds like the one I mentioned that may help.
I hope this extra info helps make things slightly clearer for you.
-Chris
Hello. I am looking for some serious, fast help regarding student picture submissions for assignments, When student pictures load inside of assignment, they are sideways. When I use "Rotate" button, ALL tools disappear, not allowing any kind of mark-up or any tool use. First picture is what I see right away. Second is an…
How do I access ASOR assignments the Unit 1 - Exercise 1a, 1b, and 1c? This is the instruction I got; Use the green Program Navigation button on the right to navigate to Unit 1, EXERCISES 1b, 1c and I am not aware where the green program is located. Please help
Suggestion: IB and AP are moving to all digital. Currently, if we want peer reviews for in class essays, we have to use the assignment feature. Could we use the quizzes feature so we can use the lockdown browser AND also assign peer reviews? This would help support the integrity of the timed essay.
I've had some faculty ask if could block agentic browsers such as Comet, ChatGPT Atlas, and Dia from being able to access Canvas. Have any schools taken a stance on this? Has Instructure mentioned any technical controls around this topic? I was unable to find any articles in a quick search, other than requiring LDB for all…
Breakout Discussions would enable instructors to orchestrate multi-phase discussions that mirror effective classroom facilitation patterns. An instructor creates a master discussion topic, then segments participants into small breakout groups for focused conversation, and finally reconvenes everyone into a unified thread…
