[KBA-00978] Cardholders Incorrectly Granted Access to All Doors
This article explains why all cardholders in a group might have access to every door in a system, even though they should not.
After modifying a cardholder group in the Config Tool, all cardholders in that group suddenly have access to all the system's doors, even though they should not.
The “All cardholders” group has most probably been configured as a child of the cardholder group. This should be avoided in order to avoid conflicts in the different access rules defined on a system.
In order to check if the All Cardholders group has no parent:
1- In Config Tool, open the Access Control task and select the Cardholder groups tab
2- Select the All cardholders group
3- In the Relationship window, expand the Parent cardholder groups. It should say the following if it has no parent:No information to display.