Small and medium business | Business Central, N...

Limiting access

(6) Share

Report

Posted on by JB-22071942-0

We are using BC365 finance. I want to limit access so certain users cannot have access to financial information such as GL account balances chart of accounts etc running financial reports. If they are posting a SO or invoice I’d like them to be able to view the GL entries. I know Incan give them a profile that doesn’t show these options but that doesn’t stop someone putting it in the search line. What table data do I need to exclude ?

Categories:

Dynamics 365 Business Central

I have the same question (0)

All responses (8)

Answers (0)

Martin Dráb 238,745 Most Valuable Professional on at

Like (3)

Report
Copy link

Link copied!

Moved from Integration, Dataverse, and general topics forum to Small and medium business | Business Central, NAV, RMS forum.

Was this reply helpful? Yes No
Sumit Singh 11,749 Super User 2026 Season 1 on at

Like (4)

Report
Copy link

Link copied!

Hi @JB-22071942-0,

I think it's a duplicate query. Similar query raised in below link:-

Limit access

Below link might help you:-

Dynamics 365 Business Central: Permission Exclusion (Exclude in Permission Set) | Dynamics 365 Lab

Please mark it "Verified" if it helps.

1 people found this reply helpful.

Was this reply helpful? Yes No
JB-22071942-0 48 on at

Like (2)

Report
Copy link

Link copied!

The post to exclude chart of accounts was helpful however I also want to make sure that they cannot run any of the financial reports so access TB etc by excluding COA what else do I need to do ?

Was this reply helpful? Yes No
Suggested answer

Khushbu Rajvi. 21,573 Super User 2026 Season 1 on at

Like (3)

Report
Copy link

Link copied!

If this provide some hint: https://community.dynamics.com/forums/thread/details/?threadid=ada5cbd5-12f8-ee11-a1fd-6045bdd51112

Was this reply helpful? Yes No
Suggested answer

Gregory Mavrogeorgis 901 Super User 2026 Season 1 on at

Like (2)

Report
Copy link

Link copied!
Hi,

Use permissions (not profiles).
Grant only lean sales sets (e.g., D365 SALES DOC, EDIT/POST). Avoid ACCOUNTANT/BUS FULL.
Block these TableData (no Read):

G/L Account

G/L Budget Entry

Acc. Schedule Name, Acc. Schedule Line

Column Layout Name, Column Layout

Analysis View, Analysis View Entry, Analysis View Budget Entry

Allow drill-down (Read) + secure it:

G/L Entry → Read with Security Filter (e.g., Source Code IN (SALES,S-INV,S-CR.MEMO) and/or Document Type IN (Invoice,Credit Memo)).

Also Customer Ledger Entry and Detailed Cust. Ledger Entry → Read.

Remove Execute on finance pages/reports:
Chart of Accounts, Account Schedules/Financial Reports, G/L Budgets, Analysis by Dimension, Trial Balance/IS/BS reports.
Quick test:

Effective Permissions: G/L Account = no Read, G/L Entry = Read (filtered).

From Posted Sales Invoice → Navigate → General Ledger Entries works.

Searching Chart of Accounts/Trial Balance is blocked.

If you have found this helpful please mark it as verified

Was this reply helpful? Yes No
Suggested answer

YUN ZHU 98,231 Super User 2026 Season 1 on at

Like (1)

Report
Copy link

Link copied!

Hi, If this is a question from BC365 finance, please submit it to the forum below.

https://community.dynamics.com/en-US/forums/thread/?partialUrl=finance

Thanks.

ZHU

Was this reply helpful? Yes No
Suggested answer

Jainam M. Kothari 15,668 Super User 2026 Season 1 on at

Like (1)

Report
Copy link

Link copied!

Hello,

To restrict access to financial data in Business Central 365 Finance while allowing users to post transactions and view related GL entries, you should create custom permission sets that exclude direct access to key financial tables like G/L Account (15), G/L Register (45), and Account Schedules (84/85), and remove Execute permissions from financial reporting pages.

For G/L Entry (17), grant Indirect Read so users can view entries linked to posted documents but not browse them freely.

Use Security Filters to further limit visibility, and assign these permission sets directly to users to prevent them from accessing sensitive financial data via search or navigation.

https://learn.microsoft.com/en-us/dynamics365/business-central/dev-itpro/security/security-filters

https://msdynamicsworld.com/story/dynamics-365-business-central-access-control-challenge-setting-gl-post-only-permission-sets

1 people found this reply helpful.

Was this reply helpful? Yes No
Suggested answer

Valentin Castravet 31,986 Super User 2026 Season 1 on at

Like (1)

Report
Copy link

Link copied!

The post to exclude chart of accounts was helpful however I also want to make sure that they cannot run any of the financial reports so access TB etc by excluding COA what else do I need to do ?

Make sure their permissions don’t include access to these reports. The simplest approach is to copy their current permission set and remove the reports you don’t want them to access by using the exclude feature.

Valentin Castravet
Work: Zander ERP Services
Blog: Dynamics 365 Business Central Insights
LinkedIn: www.linkedin.com/in/valentin-c-0500a247/

Was this reply helpful? Yes No