Security policy does not work

(0) Share

Report

Posted on by maram fraij

I created a new security policy to filter data for certain group similar to that example in the below link. The table is totally customized table. I linked policy with certain role and assign this role to user but security roll does not work i.e. data is not filtered as expected . What are the expected reasons which make the security role does not work properly?

https://msdn.microsoft.com/en-us/library/hh272121.aspx

I try to debug it using XDSServices and I find that the query is filtered as expected

*This post is locked for comments

I have the same question (0)

All responses (7)

Answers (0)

Community Member on at

Like (0)

Report

Maram,

Could you possibly screenshot the query and security policy - it might help debug what has gone wrong.

Bruce

Was this reply helpful? Yes No
André Arnaud de Cal... 301,037 Super User 2025 Season 2 on at

Like (0)

Report

Hi Maram,

First of all, you need to ensure the user has no System administrator role assigned. If this is not your culprit, you have to provide more information. Do you only have a new table? Is this table implemented on a form which should be restricted? Do you have a view based on this new table which is used on a form? In that case, you need to add this view also as constrained table.

Was this reply helpful? Yes No
maram fraij on at

Like (0)

Report

Hi ,

I checked the customized form I find that it has two data sources ( one of them not applied to security policy ). I removed it bu the security policy doe not work.

I modified the query and security policy which I created to make them linked with standard table CustGroup just for testing but still security policy does not work.

Below are the screenshots for what I did:

Query :

Security policy:

Roles assigned to used user :

Was this reply helpful? Yes No
Suggested answer

André Arnaud de Cal... 301,037 Super User 2025 Season 2 on at

Like (0)

Report

Hi Maram,

When I look at your screenshots, I have the idea that "not filtered as expected" means that you perhaps don't get any records visible?

In that case the range value might be your problem. It is now stating "=External". Try "External" without the equals sign.

Was this reply helpful? Yes No
maram fraij on at

Like (0)

Report

All records are returned with no filter.

I tested the query using a view it seems it works fine only the record with cust group External is returned

Was this reply helpful? Yes No
maram fraij on at

Like (0)

Report

it seems I have an issue in role assignment for user since I notice that when I assign only the role systemUser and the user still able to access all AX module .

Was this reply helpful? Yes No
André Arnaud de Cal... 301,037 Super User 2025 Season 2 on at

Like (0)

Report

Hi Maram,

Are you using AD groups for granting security roles? In that case he might have inherited a system administrator role? Also you can check the AD user if there are some linked accounts where AX might think it should act like an AD group user in AX.

Can you also test it with another user to see if actually the security policy is working?

Was this reply helpful? Yes No