Small and medium business | Business Central, N...

Permissions

(5) Share

Report

Posted on by peter fun

739

Hi All,

I need to give a Business Central user permissions to create and post Sales Orders and Sales Credit Memos, and to view Posted Sales Invoices and Posted Sales Credit Memos, but only the documents they created themselves.

The same user must also be able to approve Purchase Invoices created by other users.

When I apply a security filter on Sales Header so the user only sees their own documents, posting fails with an error saying that security filters on Sales Header must be removed.

How can I set up permissions so the user can post Sales Orders, see only their own sales documents, approve other users’ purchase invoices, and avoid the posting error?

Thanks.

Categories:

Dynamics 365 Business Central

Dynamics 365 Business Central migration

I have the same question (0)

All responses (8)

Answers (0)

Suggested answer

Alex A 3,068 Super User 2026 Season 1 on at

Like (3)

Report
Copy link

Link copied!

You could test removing your security filter from the Sales Header table and only leave the security filter on the Sales Invoice Header table. Then test this to see if they can post.

ANSWER:

You can always have a developer do customizations in those special circumstances where you can't trust people.

For example, you can have a custom Sales Order list page made where the filter is built into the page so that the user only sees their own documents. This will accomplish your desired result. You can do the same for the Posted Sales Invoice list page.

*Two custom list pages with a username filter.

Regards

1 people found this reply helpful.

Was this reply helpful? Yes No
peter fun 739 on at

Like (3)

Report
Copy link

Link copied!

@ALEX A
I have tested this and applied security filter only on posted sales invoice header but still getting an error

I want to give user permissions to create and post sales order also sales credit memo but with the condition that he can only see his own created documents

Was this reply helpful? Yes No
Suggested answer

Aman Kakkar 2,977 Super User 2026 Season 1 on at

Like (3)

Report
Copy link

Link copied!

Hi,

I would recommend implementing a small customization to meet this requirement rather than trying to achieve it entirely through permission sets. Business Central may not allow posting when security filters are applied to the Sales Header table, which might be the reason this error occurs.

A lightweight customization can handle this cleanly — for example, by applying the necessary filters on UserID on the OnOpenPage trigger of the relevant pages. This ensures the user only sees their own documents on the UI while still allowing posting to run.

Hope this helps.

Aman K

1 people found this reply helpful.

Was this reply helpful? Yes No
Suggested answer

OussamaSabbouh 12,808 Super User 2026 Season 1 on at

Like (1)

Report
Copy link

Link copied!

Hello,

You cannot use security filters on Sales Header for users who post. Posting requires full header/line access, so BC blocks it.

If you want the user to:

post Sales Orders/Credit Memos,

see only their own sales documents,

approve others’ purchase invoices,

…the only working setup is:

Remove security filters

Use a page extension that hides other users’ sales documents (UI filter), not a security filter.

This way:

BC can post (full access internally)

The user still only sees their own documents

Purchase approvals still work

Security filters cannot achieve this scenario.

Regards,

Oussama Sabbouh

1 people found this reply helpful.

Was this reply helpful? Yes No
peter fun 739 on at

Like (2)

Report
Copy link

Link copied!

for purchase invoice approving related someone is sending request to this user and when this person try to approve getting this error

I have checked this user has permissions on dimensions then what is the issue there??

Was this reply helpful? Yes No
Gerardo Rentería Ga... 25,555 Most Valuable Professional on at

Like (2)

Report
Copy link

Link copied!

Hi You could create page extensions in the required documents and filter by user.

Best GR

Was this reply helpful? Yes No
Suggested answer

Jainam M. Kothari 15,732 Super User 2026 Season 1 on at

Like (1)

Report
Copy link

Link copied!

Hello,

You cannot use security filters on Sales Header because posting requires unrestricted access to that table. Instead, grant standard permissions for creating and posting Sales Orders and Credit Memos, and use page filters or custom extensions to limit visibility to documents created by the user.

For approving Purchase Invoices, assign appropriate approval permissions (e.g., workflow roles) without restricting access to posting tables.

Summary: avoid security filters on transactional tables, rely on workflow and UI filtering for visibility, and combine permission sets for posting and approval tasks.

1 people found this reply helpful.

Was this reply helpful? Yes No
Suggested answer

Rishabh Kanaskar 6,219 Super User 2026 Season 1 on at

Like (2)

Report
Copy link

Link copied!

Hi,

There is no standard way to enforce “see only own documents” with security filters and still allow posting. It requires UI filtering or customization rather than security filters.

Thanks

Rishabh

Was this reply helpful? Yes No