Personalized Community is here!
Quickly customize your community to find the content you seek.
Have questions on moving to the cloud? Visit the Dynamics 365 Migration Community today! Microsoft’s extensive network of Dynamics AX and Dynamics CRM experts can help.
2021 Release Wave 2Discover the latest updates and new features releasing from October 2021 through March 2022.
2021 release wave 2 plan
The FastTrack program is designed to help you accelerate your Dynamics 365 deployment with confidence.
FastTrack Community | FastTrack Program | Finance and Operations TechTalks | Customer Engagement TechTalks | Upcoming TechTalks | All TechTalks
I'm trying to create a security role which allows a user to read a specific account record with its relevant records e.g. contacts, activities...etc.
I created a new security roles and enabled all Read circles to "user" level only. The user is capable of reading only the account which was shared with him. However I keep receiving an error (Protocol file pasted below) and sometimes the entire CRM Page doesn't work.
The purpose of this security role is for an external test user to be able to see/explore our system while maintaining data privacy. So an administrator's license isn't helpful since it gives the user too much power and doesn't allow him to read that single record.
Could you please give few hints on how to achieve this task?
Unhandled Exception: System.ServiceModel.FaultException`1[[Microsoft.Xrm.Sdk.OrganizationServiceFault, Microsoft.Xrm.Sdk, Version=188.8.131.52, Culture=neutral, PublicKeyToken=31bf3856ad364e35]]: System.Web.HttpUnhandledException: Microsoft Dynamics CRM has experienced an error. Reference number for administrators or support: #CE4F7D47Detail: <OrganizationServiceFault xmlns:i="www.w3.org/.../XMLSchema-instance" xmlns="schemas.microsoft.com/.../Contracts"> <ErrorCode>-2147220970</ErrorCode> <ErrorDetails xmlns:d2p1="schemas.datacontract.org/.../System.Collections.Generic" /> <Message>System.Web.HttpUnhandledException: Microsoft Dynamics CRM has experienced an error. Reference number for administrators or support: #CE4F7D47</Message> <Timestamp>2017-03-23T15:44:12.4228007Z</Timestamp> <InnerFault> <ErrorCode>-2147220960</ErrorCode> <ErrorDetails xmlns:d3p1="schemas.datacontract.org/.../System.Collections.Generic" /> <Message>Principal user (Id=786f7f7d-a048-e411-b5bb-005056a600bf, type=8) is missing prvReadQuery privilege (Id=902d70d3-2ff8-4d93-92f9-8efdcf889af8)</Message> <Timestamp>2017-03-23T15:44:12.4228007Z</Timestamp> <InnerFault i:nil="true" /> <TraceText i:nil="true" /> </InnerFault> <TraceText i:nil="true" /></OrganizationServiceFault>
I checked the error code, it seems to say "Unexpected error"..
Thanks you for your effort.
The user can see the records of his own and the records shared to her/him only, if the user is in a Security Role which has Read privilege and User level access.
Since user has user level access on related record ..you are getting this error.It is possible that Entity is owned by User but related record has any other owner ,may be from different Business Unit.
Create Security Role based on your requirement.
The error says:
Principal user (Id=786f7f7d-a048-e411-b5bb-005056a600bf, type=8) is missing prvReadQuery privilege (Id=902d70d3-2ff8-4d93-92f9-8efdcf889af8)
Here the 'Principal user' is the logged-in user. The GUID of the logged in user is 786f7f7d-a048-e411-b5bb-005056a600bf while type =8 indicates it is a systemuser (9 denotes team).
prvReadQuery = Read Privilege.
(Id=902d70d3-2ff8-4d93-92f9-8efdcf889af8) denotes the ID of record which is being tried to access but is not accessible.
It might be it is the main entity or it is also possible that reference entity with Id=902d70d3-2ff8-4d93-92f9-8efdcf889af8 is not accessible to user.
You can check in customization about the related entity of account and try provding user level access to those entity as well.
Business Applications communities