I think I have a problem. We have a requirement to allow users to create/edit addresses for contacts, but not be able to create/add accounts.
We are on-premise, rollup 12.
It appears the "new address" permission is tied directly to the "Account" permission so if they can add or edit addresses they can can also add/edit accounts. This resulted in me being unable to create or edit addresses through the "more
addresses" entity.
I tested this by making a copy of the System Administrator security role, assigning it to my test user, and then unchecking the "Create" button on the account entity.
This seems like strange behavior to me, and I know the address entity is a fickle beast and functions differently than "normal" entities.
Is there a way around this short of allowing everyone to create organizations and then controlling it with a plugins that check if the person has a certain security role to prevent them from adding or modifying organizations?