web
You’re offline. This is a read only version of the page.
close
Skip to main content
Community site session details

Community site session details

Session Id :
Dynamics 365 Community / Forums / Small and medium business | Business Central, N... / Cant create new users ...
Small and medium business | Business Central, N...
Answered

Cant create new users due to rogue permission set?

(1) ShareShare
ReportReport
Posted on by RandomName 55
Hi,

I seem to have a rogue permission set or user group that tries to get itself added to new users. 

No matter what I try to do with the user they still get this error when they log in. We havent had new users for quite a while so I dont really know what could have changed.

Any ideas on how I would troubleshoot this? Ive been trying to find this /MANDATORYFIELD_READ/ permission but cant find it. Probably looking in the wrong place. Was expecting something to be red under user permissions.
 
 
 
While opening company 'companyname', the following error occured: 'Cannot assign the user group or permission set /MANDATORYFIELD_READ/, because it references an extension (with App ID /xxx-xxx-xxx/) that is no longer installed.'AL stack trace:
/Plan Configuration Impl./(CodeUnit 9822).AddPermissionSetToAccessControl line 27 - System Application by Microsoft
/Plan Configuration Impl./(CodeUnit 9822).AssignCustomPermissionsToUser line 13 - System Application by Microsoft
/Plan Configuration/(CodeUnit 9825).AssignCustomPermissionsToUser line 4 - System Application by Microsoft
/Permission Manager/(CodeUnit 9002).AssignDefaultPermissionsToUser line 31 - Base Application by Microsoft
/Permission Manager/(CodeUnit 9002).AssignDefaultPermissionsToUser line 5 - Base Application by Microsoft
/Permission Manager/(CodeUnit 9002).UpdateUserAccessForSaaS line 5 - Base Application by Microsoft
/User Access Update/(CodeUnit 9020).OnUpdateUserAccessForSaaS line 4 - Base Application by Microsoft
/Azure AD Plan/(CodeUnit 9016).OnUpdateUserAccessForSaaS - System Application by Microsoft
/Azure AD Plan Impl./(CodeUnit 9018).AddNewlyAssignedUserPlans - System Application by Microsoft
/Azure AD Plan Impl./(CodeUnit 9018).UpdateUserPlans - System Application by Microsoft
/Azure AD Plan Impl./(CodeUnit 9018).RefreshUserPlanAssignments - System Application by Microsoft
/Azure AD Plan/(CodeUnit 9016).RefreshUserPlanAssignments - System Application by Microsoft
/Azure AD User Mgmt. Impl./(CodeUnit 9017).Run - System Application by Microsoft
/Azure AD User Mgmt. Impl./(CodeUnit 9017).OnRun(Trigger) line 5 - System Application by Microsoft
/Azure AD User Management/(CodeUnit 9010).OnRun(Trigger) line 2 - System Application by Microsoft
/System Initialization Impl./(CodeUnit 151).Init line 9 - System Application by Microsoft
/Company Triggers/(CodeUnit 2000000003).OnCompanyOpen(Event) line 2
Date and time: Tue, 18 Jul 2023 13:07:44 GMT
Azure AD tenant: 1234567
Operation: e1ff2578827748998dabd41210f797fe
Categories:
Dynamics 365 Business Central
Dynamics 365 Business Central
Dynamics 365 Business Central
I have the same question (0)
  • Verified answer
    Cynthia Priebe, MCT, MCP Profile Picture
    Cynthia Priebe, MCT... 203 on at
    Cant create new users due to rogue permission set?
    If you are using a recent version of Business Central, you may want to check License Configuration. 
     
    Find the License being assigned to the users, and select the Configure action from the menu. This will show you a list of all the permissions being added automatically to the new users assigned this license. You may find the set here. 
     
    Any changes made will only affect new users. Existing users will not be updated based on changes made to license configuration.
     
     
     
    If this solves your problem, please mark this response as the answer. Thanks, Cynthia
     
  • Suggested answer
    YUN ZHU Profile Picture
    YUN ZHU 94,170 Super User 2025 Season 2 on at
    Cant create new users due to rogue permission set?
    Hi, hope the following helps as well.
    License Configuration page (Set Default User Groups and Default Permission Sets for the license type)
     
     
    Thanks.
    ZHU
  • Suggested answer
    KasparsSemjonovs Profile Picture
    KasparsSemjonovs 4,711 Super User 2025 Season 2 on at
    Cant create new users due to rogue permission set?
    The cause of this most probably is deletion of Permission Sets directly from SQL without validaiton or through configuration package somehow without deleting the child table that is linked to it.
    Open Permission Sets list and check if You see this MANDATORYFIELD_READ  entry. 

    I would assume it is not there, so just create a new line with the same name. It should automatically attach all the Rogue permissions hanging in the system. Then if not needed You can delete this permission set.

Under review

Thank you for your reply! To ensure a great experience for everyone, your content is awaiting approval by our Community Managers. Please check back later.

Helpful resources

Quick Links

Responsible AI policies

As AI tools become more common, we’re introducing a Responsible AI Use…

Pallavi Phade – Community Spotlight

We are honored to recognize Pallavi Phade as our Community Spotlight honoree for…

Congratulations to the October Top 10 Community Leaders!

These are the community rock stars!

Leaderboard > Small and medium business | Business Central, NAV, RMS

#1
OussamaSabbouh Profile Picture

OussamaSabbouh 2,553

#2
Sumit Singh Profile Picture

Sumit Singh 2,057

#3
YUN ZHU Profile Picture

YUN ZHU 1,915 Super User 2025 Season 2

Last 30 days Overall leaderboard

Featured topics

Product updates

Dynamics 365 release plans