Skip to main content

Notifications

Announcements

No record found.

News and Announcements icon
Community site session details

Community site session details

Session Id :
Dynamics 365 Community / Forums / Microsoft Dynamics CRM (Archived) / CRM Security Question
Microsoft Dynamics CRM (Archived)

CRM Security Question

(0) ShareShare
ReportReport
Posted on by MDS 1,781

We are about to engage with a 3rd party who will have access to our CRM system. It is critical that the 3rd party only has access to the records that they create themselves; eg, they must not see any existing records - on any level. They will be working with their own contacts, accounts and other records only.

How can we facilitate this? I'm presuming Business Units and Security Roles are where we should be looking? Given that we already have significant data in CRM, how easy is it going to be to introduce this security?

Thanks in advance. 

*This post is locked for comments

  • CindyJ Profile Picture
    CindyJ on at
    RE: CRM Security Question

    these are great resources, thank you

  • Suggested answer
    nplima Profile Picture
    nplima 540 on at
    RE: CRM Security Question

    Hi

    CindyJ wrote the following post at 13 Sep 2017 3:36 PM:

    I am looking for documentation on the base security offerings for Dynamics CRM.  I want to utilize role, bu, team and what ever other security is offered before building something custom.  I need to understand all the base capabilities.

    Try here:

    technet.microsoft.com/.../dn531066.aspx

    and here:

    www.microsoft.com/.../security-overview.aspx

    Good luck.

  • Aric Levin Profile Picture
    Aric Levin 30,188 Moderator on at
    RE: CRM Security Question

    What is the purpose of the third party having access? What are they going to do?

    If the data that is entered by the third party is of no relevance to your organization, I would create a sandbox environment for the third party and copy your solution over to the Sandbox environment for them to use.

    Is that something that would work for you?

    The other option of course would be to handle security using Business Units and Security Roles.

    We have recently done something similar where the certain Business Units have no access to data, but can still create their own, so they would have their own security role with the minimal access (only internal to the business unit).

    I think the other answers that you have here kind of cover your options.

  • CindyJ Profile Picture
    CindyJ on at
    RE: CRM Security Question

    I am looking for documentation on the base security offerings for Dynamics CRM.  I want to utilize role, bu, team and what ever other security is offered before building something custom.  I need to understand all the base capabilities.

  • Community Member Profile Picture
    Community Member on at
    RE: CRM Security Question

    Hmmm..  the "best" answer here is another question to better understand  future requirements and scale.  How many 3rd party users will you have?  And will the 3rd party users be cross  functional SME'a as part of an enterprise team (many different 3rd party sme'a participating  in different business processes)?  I ask as starting first with Roles vs. BU's does not scale well and may lack foresight, especially if the 3rd party may have many different SME/roles themselves.  On the other hand you are talking about just a few 3rd party workers in the same role, then yeah make the exception and design roles from the bottom up vs. Top down..   the cross over for one approach vs the other ironically is dependant upon the number of unique roles you have to create to support cross functional sceanrios.  Be mindful of the fact the msft "crm" is NOT a single BU solution.  It Is an enterprise and partner solution that spans processes and bu's

  • Suggested answer
    Frank Lee Profile Picture
    Frank Lee 4,617 on at
    RE: CRM Security Question

    I would begin testing out a new security role and limit the privileges to mostly 1/4 circle "Basic" - records the user own

    msdn.microsoft.com/.../gg334717.aspx

  • Community Member Profile Picture
    Community Member on at
    RE: CRM Security Question

    Start with the BU's then use roles and granular permissions if needed, but the BU should provide the most comprehensive separation OOB.  

  • Deepika Desingh Profile Picture
    Deepika Desingh on at
    RE: CRM Security Question

    The easiest and best possible way would be to create a Security Role with user level privilege on the entities that you want to restrict access. You can create a team and add all 3rd party users to that team and specify this security role to the team.

Under review

Thank you for your reply! To ensure a great experience for everyone, your content is awaiting approval by our Community Managers. Please check back later.

Helpful resources

Quick Links

Daivat Vartak – Community Spotlight

We are honored to recognize Daivat Vartak as our March 2025 Community…

Announcing Our 2025 Season 1 Super Users!

A new season of Super Users has arrived, and we are so grateful for the daily…

Kudos to the February Top 10 Community Stars!

Thanks for all your good work in the Community!

Leaderboard

#1
André Arnaud de Calavon Profile Picture

André Arnaud de Cal... 293,274 Super User 2025 Season 1

#2
Martin Dráb Profile Picture

Martin Dráb 231,947 Most Valuable Professional

#3
nmaenpaa Profile Picture

nmaenpaa 101,156 Moderator

Leaderboard

Featured topics

Product updates

Dynamics 365 release plans