You’re offline. This is a read only version of the page.
625
Hi Everyone,
Good day. I would like to seek for your thoughts regarding security roles and privileges. So I have a requirement to create a new custom role to act as "System Administrator", with the ability limited only to 1) Assign users with security roles and 2) Enable the users mailboxes. I did copy the original system administrator role and removed most of the privileges. What's left are the minimum privileges mentioned in this post, plus the privileges to accomplish the goals without any delete (see below).
Upon testing this custom role, I encounter 2 issues. First is I can add roles to the user but when I try to remove the assigned role, it throws exception and says insufficient permission. Secondly, I could not open the mailbox records and when I try to approve the primary email from the mailbox list view, I also receive insufficient permission. When I download and open the error logs, the error code -2147220970 is which is just "An unexpected error occurred." as defined in SDK.
Seems I am missing some more privileges, but I can't identify which ones. Any thoughts?
Thank you.
*This post is locked for comments
Found the answer for this here. Basically even with the minimum privileges needed, the limited System Admin user needs to have privileges to entities of which he will assign, which makes sense. So, for example, he will assign Sales Manager to a user, he needs to have the role assigned to the user first. Hence this user will have multiple roles on top of the customized security role.
Try to use CRMDiagTool to identify the exact error and find out which privilege is missing.
Stay up to date on forum activity by subscribing. You can also customize your in-app and email Notification settings across all subscriptions.
#1
André Arnaud de Cal...
291,240
Super User 2024 Season 2
#2
Martin Dráb
230,149
Most Valuable Professional
#3
nmaenpaa
101,156
Share
Report
All responses (
Answers (