Dynamics 365 CE - User Roles assigned automatically by the system

(0) Share

Report

Posted on by Daniele.Torlai

Hi everyone,

i'm struggling with a very annoying issue in my company's CRM instace: we have a very complete CRM with almost every 365 app (Sales, Cust Service, PSA, Field Service, Marketing and many add-ons like Linkedind Lead Management and so on).

The point is that we have a specific set of roles to assign to our users (many of these are custom) and we want to give them only the roles they need to segmentate accordingly apps visibility and so on, but the system keeps assigning randomly default roles like:

Customer Service App Access;
Sales, Enterpise App Access;
Event Admin
Event Planner
Marketing Manager/Professional/User
Survey Admin/Designer/Service/User

I really don't understand what is happening and, most of all, what is the cause of this behaviour: whe just suppose that this happens after the automatic update of some solutions, but there is absolutely no pattern at all in this annoying automatic roles distribution (often they are given to different sets of users and not to others and maybe there is no difference at all in the way users are configured).

Someone has experienced this and have an approriate answer to this?

Thank you in advance.

All responses (4)

Answers (1)

Jetj25 532 on at

Like (0)

Report

RE: Dynamics 365 CE - User Roles assigned automatically by the system

The roles

Event Admin

Event Planner

Marketing Manager/Professional/User

Have delete priviliges on account contact and they can create account and contact.
Jetj25 532 on at

Like (0)

Report

RE: Dynamics 365 CE - User Roles assigned automatically by the system

I hope it will be fixed soon. These roles give users acces to delete contacts or organizations or acces to other entities
Daniele.Torlai 50 on at

Like (0)

Report

RE: Dynamics 365 CE - User Roles assigned automatically by the system

Thank you very much for the clear and complete answer.

Have a nice day!
Verified answer

Pedro S Nunes on at

Like (0)

Report

RE: Dynamics 365 CE - User Roles assigned automatically by the system

Hello Daniele,

Thank you for your question on Dynamics 365 Community.

The behavior you describe is default. To ensure that the users have access to all the capabilities provided by their license , there are jobs that will ensure that some Security Roles are assigned to the users.

Please note that the Security Roles assigned do not provide any additional security privileges on any Entity. They just provide access to the Apps. This means that a user will never be able to have additional Read, Write or Delete privileges to any records, so security will not be compromised.

This behavior is documented https://docs.microsoft.com/en-us/power-platform/admin/create-users-assign-online-security-roles#add-a-license-to-a-user-account

Let me also add that the behavior you are describing has already been pointed out by other customers. Our Product Team is already aware there are specific scenarios in which this functionality should not be active, as it will not allow to meet some specific scenarios implemented by customers.

For this reason, this functionality is currently under review and there is the possibility that in the future it will be possible to deactivate the auto assignment of Security Roles.

Hope this helps.

If this answer was helpful to you please mark it as an answer. Thank you!

Thank you for using Microsoft Dynamics Communities.

Pedro Nunes

Support Escalation Engineer

Microsoft Dynamics CRM