Skip to main content
Post a question

Notifications

Announcements

No record found.

News and Announcements icon
Community site session details

Community site session details

Session Id : EinjbSK8zzsD6JS209Yc7h
Dynamics 365 Community / Forums / Finance | Project Operations, Human Resources, ... / Security setup in Data...
Finance | Project Operations, Human Resources, ...
Suggested answer

Security setup in Data management

Like (0) ShareShare
ReportReport
Posted on 3 Mar 2023 08:41:10 by Kasper 5

I currently use the 'Setup roles for processing groups' and ‘Applicable legal entities’ to limit users access I Data management. I have setup two procession groups:

  • 921_DataUdtræk
  • 923_DataUdtræk.

The numbers refer to company number. 921_DataUdtræk is setup to company number: 921 and 923_DataUdtræk is setup to company number: 923 in the ‘Applicable legal entities’ setup.

My test user: Testscs is configured to access both processing groups through setup in 'Setup roles for processing groups'.

pastedimage1677832746231v1.png

My security issue is that it is possible to change the query on both data projects and hereby export data from other companies. The data generated from another company than 921 and 923 is accessible through ‘Job history’ > execution details > download file. Users are able to export data from companies which they do not have access to through security configuration i system administration.

pastedimage1677832802969v2.png

pastedimage1677832816764v3.png

pastedimage1677832854754v4.png

How are you dealing with this issue? Is it possible to limit the user access to change the query on the data project?

Best Kasper

  • Kasper Profile Picture
    Kasper 5 on 06 Mar 2023 at 08:52:59
    RE: Security setup in Data management

    Thank you for your input, Andre. I will look into the examples from your blog and try to setup restrictions based on entity access.

  • Kasper Profile Picture
    Kasper 5 on 06 Mar 2023 at 08:45:15
    RE: Security setup in Data management

    Thank you for you input Amith

  • Suggested answer
    André Arnaud de Calavon Profile Picture
    André Arnaud de Cal... 292,865 Super User 2025 Season 1 on 05 Mar 2023 at 08:46:43
    RE: Security setup in Data management

    Hi Kasper.

    The screenshots are a bit small to be able to read them. Are you exporting the General Journal Entries? In that case, you would need to apply a security policy as the General Journal Entry (GeneralJournalEntry) and General Journal Account Entry (GeneralJournalAccountEntry) tables are not saving data per legal entity but are a shared table with a Ledger context.

    Examples how to create security policies are provided on my blog: Extensible Data Security examples - Secure by legal entity (dynamicspedia.com)

    Note that you can extend the examples with the above mentioned tables to restrict access to these tables only. 

    You can also use the security framework to prevent these users from opening or changing these queries. It might need a form extension first to make the grid control a securable form control object.

  • Suggested answer
    A.Prasanna Profile Picture
    A.Prasanna 8,177 on 04 Mar 2023 at 16:02:45
    RE: Security setup in Data management

    I think you can sort this out using the User Role assignment. Just go to  System Administration > users, then
    assign permission only selected entity, don't forget to do the same thing for System User Role too. 
    when you do that user won't have access to the LE they don't have access.

Under review

Thank you for your reply! To ensure a great experience for everyone, your content is awaiting approval by our Community Managers. Please check back later.

Helpful resources

Quick Links

Daivat Vartak – Community Spotlight

We are honored to recognize Daivat Vartak as our March 2025 Community…

Announcing Our 2025 Season 1 Super Users!

A new season of Super Users has arrived, and we are so grateful for the daily…

Kudos to the February Top 10 Community Stars!

Thanks for all your good work in the Community!

Leaderboard

#1
André Arnaud de Calavon Profile Picture

André Arnaud de Cal... 292,865 Super User 2025 Season 1

#2
Martin Dráb Profile Picture

Martin Dráb 231,723 Most Valuable Professional

#3
nmaenpaa Profile Picture

nmaenpaa 101,156 Moderator

Leaderboard

Featured topics

End-of-life Announcement for Microsoft Dynamics GP

Product updates

Dynamics 365 release plans