Skip to main content

Notifications

Announcements

No record found.

News and Announcements icon
Dynamics 365 Community / Forums / Microsoft Dynamics CRM (Archived) / Security on User forms
Microsoft Dynamics CRM (Archived)

Security on User forms

(0) ShareShare
ReportReport
Posted on by Community Member Microsoft Employee

We are running an on-premise CRM 2013 and this has happened a couple of time, typically with new employees.  The new employee, Joe, accidentally clicks on another users name, Carl, which then takes him to the Administration -> Users screen for Carl.  Joe sees Carl's name there and think, 'oh, this should be my name instead.' and changes Carl's name to his.  Now thankfully they only change the display name, not the actual username.

My question is what security settings are needed to prevent anyone from changing anyone else's user screen?  Under Security Roles -> Core Records, all the User entities are set to User, but that doesn't seem to make a difference.  Under Security Roles > Business Management there is the User entity there, which when I remove the Write privileges, makes the User screen Read-Only, but there isn't an option to set it to User, it just jumps from None to Business Unit.

Is this something unique to our system or is there something that I'm missing?  I suppose I could set Field Security on the fields that I don't want changed, just curious if that is the only way to go?

Thanks

*This post is locked for comments

  • ashlega Profile Picture
    ashlega 34,475 on at
    RE: Security on User forms

    +1 for Aamer. This is exactly how out of the box roles are set up (have a look at the SalesPerson role, for example - they have no "write" permissions on the user entity)

  • Suggested answer
    Community Member Profile Picture
    Community Member Microsoft Employee on at
    RE: Security on User forms

    Hi Lindsay,

    Why are we trying to give User access level on Write permission to the User records?

    Logically & technically, end users will not be creating user records and should not be updating them.

    I would prefer removing the Write permission altogether.

  • Suggested answer
    Aric Levin Profile Picture
    Aric Levin 30,188 on at
    RE: Security on User forms

    Hi Lindsay,

    User Entity does not have User scope. Only scopes that are available are BU, Parent-Child BU and Organization.

    You can create another form for the user entity which only contains the fields that you want to have your users see, and set the fields as read-only in form designer.

    You can then enable security roles for the form and set the appropriate permissions.

    System Administrators will have access to both forms.

    Hope this helps.

Under review

Thank you for your reply! To ensure a great experience for everyone, your content is awaiting approval by our Community Managers. Please check back later.

Helpful resources

Quick Links

December Spotlight Star - Muhammad Affan

Congratulations to a top community star!

Top 10 leaders for November!

Congratulations to our November super stars!

Tips for Writing Effective Suggested Answers

Best practices for providing successful forum answers ✍️

Leaderboard

#1
André Arnaud de Calavon Profile Picture

André Arnaud de Cal... 291,280 Super User 2024 Season 2

#2
Martin Dráb Profile Picture

Martin Dráb 230,214 Most Valuable Professional

#3
nmaenpaa Profile Picture

nmaenpaa 101,156

Leaderboard

Featured topics

Product updates

Dynamics 365 release plans