The recent upgrade to Role Based Security is an improvement. However, access to Control Panel>Applications and Control Panel>Settings is still based on the associated user being a supervisor in the database view. Access to these items in the Control Panel should be controlled in the webview and not based on the user being a supervisor in the database view. I like to limit my rights (as recommended by Blackbaud) in the database view to prevent certain records from being deleted unintentionally (and other reasons). However, being able to access all of the administrative functions in the webview is still connected to being a supervisor in the database view. Maybe this is just a bug and Role Based Security was intended to fix this. In any case, the way it currently works is still somewhat disjointed.