Dependency between Assign and Write access rights

(0) Share

Report

Posted on by Community Member

Hi,

My client has a demand that every user in the system will be able to assign a case record to himself, or to other users or teams,

and another demand is that the only one who can update a case record is the owner.

We only use one security role for all the users. I gave the security role assign privilege with global access right (organization), and write privilege with user access right.

When I enter a case record as a user with the specific security role, while I don't own the record, and I'm trying to assign the record to me,

I get the Privileges error message.

When I change the security role to have write privilege with global access right, the record is being assigned (not a big surprise..), but then I don't meet the client's demand of updating a record which I don't own.

Is there some kind of dependency between those privileges?

thanks.

*This post is locked for comments

I have the same question (0)

All responses (5)

Answers (0)

Rickard Norström on at

Like (0)

Report

Hm, just out of curiosity, what sort of error do you get? Is this an on-prem so you can have a look at the trace logs? What happens if you assign a case to another user, does that work? (trying to isolate the issue, if you can assign to another user, that user will have write permission... but then again you won't....)

Was this reply helpful? Yes No
Community Member on at

Like (0)

Report

Hi Rikard,

We are experiencing something similar. We have 2016 on prem version. When a user assigns a case to a new owner, then the new owner is unable to complete off the case. They receive a business error process message: Write Access check failed.

Was this reply helpful? Yes No
Suggested answer

Alagunellaikumar 6,212 on at

Like (0)

Report

Hi

I have did this testing in my CRM environment 2016 on premise. please correct me if i am wrong in the scenario

Two users Mark and steve both are belongs to sales manager role only

One team also belongs to sales manager role only.

In the case module, both the users has assign to himself,other and team as well as and no one can edit others record except the case assign in team(assume both users are members in the team)

It is working fine as per your requirement. I have attached the screen shot for your reference.

Was this reply helpful? Yes No
L-A Filiatrault 130 on at

Like (0)

Report

I have similair problem with my case management setup.

Going from 2013 SP1 (6.1.3) to 2016 SP 2.1 (8.2.1) changed the behavior for this scenario.

The "Assign" button is not available to those would be normally be able to assign the record to themselve (BU level Assign privilege).

Something interesting about this: if you are using the new "Turbo" forms, seems ok. If you turned on the "Legacy" forms option in System Settings, the "Assign" button does not display in the command bar. Security privileges shouldn't be interpreted differently because of an optimization to form loading.

I am opening an incident with Microsoft to investigate further.

Was this reply helpful? Yes No
Suggested answer

L-A Filiatrault 130 on at

Like (0)

Report

Update: going to 2016 SP 2.2 (8.2.2) has resolved the issue for us, whether it's in "Legacy" or "Turbo" form rendering.

Was this reply helpful? Yes No