web
You’re offline. This is a read only version of the page.
close
Skip to main content

Announcements

No record found.

News and Announcements icon
Community site session details

Community site session details

Session Id :
Dynamics 365 Community / Forums / Microsoft Dynamics 365 | Integration, Dataverse... / Hiding of NDA Account ...
Microsoft Dynamics 365 | Integration, Dataverse...
Unanswered

Hiding of NDA Account in the organization.

(0) ShareShare
ReportReport
Posted on by LP-03122117-0

Hi everyone,

I’m currently working with a Dataverse security model based on Business Units. The model is intentionally quite open because salespeople often operate across the entire region.

Below is the simplified structure used in Dataverse .

 

Region South – Parent Business Unit

Subordinate BUs:

BU Italy

BU Spain

BU Portugal

 

Each country represents a separate legal company within the holding.

 

Example setup for BU Italy:

  • Security role Key Account Manager

    • Tables: Account, Contact

    • Privileges: Create (BU), Read (BU), Write (BU), Assign (BU 


  • Users are also members of the Owning Team – Region South

    Tables: Account, Contact
  • Privileges: Create (BU + Child), Read (BU + Child), Write (BU + Child), Assign (BU + Child)


       
    Because users have Read access at Parent:Child BU level, a Regional Key Account Manager automatically sees all records owned by the parent BU and all child BUs. The reason is that accounts are only once in the system and owning BU is where the account is registred.

    •  
 

Problem

Some Account records contain contractual clauses stating that the data cannot be shared across the holding, and must only be visible to the local company (specific child BU) - Italy in this example.

 

Therefore I need to achieve the opposite behavior for selected Accounts:

These Accounts must remain visible in the local BU

But they must NOT be visible to users in the parent Regional BU and the another childs BUs (Spain, Portugal)

Current Situation - summary

Key Account managers have a security role with Read = Parent:Child BU for the Account table.

Accounts are owned by the child BU.

Because of the hierarchy, they become visible to users in the parent BU.

 

However, I need to prevent visibility from the parent BU for selected records only, while keeping full access for the child BU.

Thank you very much for provided experience and advise.

Categories:
Dynamics 365 general
I have the same question (0)

Under review

Thank you for your reply! To ensure a great experience for everyone, your content is awaiting approval by our Community Managers. Please check back later.

Helpful resources

Quick Links

Introducing the 2026 Season 1 community Super Users

Congratulations to our 2026 Super Stars!

Congratulations to our 2025 Community Spotlights

Thanks to all of our 2025 Community Spotlight stars!

Congratulations to the February Top 10 Community Leaders

These are the community rock stars!

Leaderboard > Microsoft Dynamics 365 | Integration, Dataverse, and general topics

#1
Pallavi Phade Profile Picture

Pallavi Phade 102 Super User 2026 Season 1

#2
ManoVerse Profile Picture

ManoVerse 55 Super User 2026 Season 1

#2
Abhilash Warrier Profile Picture

Abhilash Warrier 55 Super User 2026 Season 1

Last 30 days Overall leaderboard

Featured topics

Welcome to the Microsoft Dynamics 365 forum!
Identifying an Org as CDS or Dynamics
Get batch job history log from D365 FO to Power Automate
Gross and Net Weight of Shipments feeding back into Sales Order (from External Source)

Product updates

Dynamics 365 release plans