Microsoft Dynamics CRM (Archived)

Record based security

(0) Share

Report

Posted on by Community Member

Hi,

There is entity lets say called "Entity A".

I created two forms for this entity: "Form A" and "Form B"

Made a security role and define the security that the "Form B" can be seen/edited only with this security role.

It works because only users with this security role can see "Form B" and switch between "Form A" and "Form B". Other users can see "Form A" only.

The problem is that if user with necessary security role open "Form B" and creates a record, the record is visible for everyone who has an access to an entity.

I need that the records would be visible for the users with the security role only.

*This post is locked for comments

I have the same question (0)

All responses (4)

Answers (0)

Suggested answer

Michel van den Brink 4,697 on at

Like (1)

Report
Hello,

Security on Forms is only a user interface limitation, it doesn't actually secure data.

You would have to use the User/Team level of permissions on the entity itself for this or use Access Teams.

If your entity is set to User/Team, you can restrict access to records in a Security Role to only allow the owner or team in which the owner resides, or the business unit in which the owner resides, access to the record.

More about entities on User/Team entities:
https://docs.microsoft.com/en-us/dynamics365/customer-engagement/developer/user-team-entities
And about teams:
https://docs.microsoft.com/en-us/dynamics365/customer-engagement/admin/manage-teams

Access Teams allow you to to ad-hoc change who has access to a specific record by allowing you to specifically add/remove users from a record.

More about teams:
https://docs.microsoft.com/en-us/dynamics365/customer-engagement/developer/use-access-teams-owner-teams-collaborate-share-information

Was this reply helpful? Yes No
Suggested answer

gdas 50,091 Moderator on at

Like (0)

Report

Hi ,

if you apply security role in the form that means only it will enable the form not the record. As per your requirement I believe you can achieve this functionality with entity type - there is three type of entity Organization Owned , Business Owned , User or Team Owned .

So you need to have your entity user or team owned by using that the record can be owned by the user or multiple user or team. So here is the following step you need to do to achieve this

Step1- Create entity as user or team owned make sure we need to define at the time of creation.

Step2- Create security role having the entity Read privileges with user level access.

Step3- The step you followed already for your form .

Hope this helps.

Was this reply helpful? Yes No
Suggested answer

RaviKashyap 55,410 Moderator on at

Like (0)

Report

The security option is for the the form i.e. which form to be visible to which security role. To restrict the data, you need to update the security role itself andchange the entity permission to user level.

Refer this:

crmbook.powerobjects.com/.../security-roles

Hope this helps.

Was this reply helpful? Yes No
Suggested answer

Mahendar Pal 45,095 on at

Like (0)

Report

Form level security just controls the visibility of the form, user will be able to access data if he has right permissions even though he don't have access to particular entity form which was used to create entity record. Please revisit security roles permissions and set them accordingly, you can refer KB suggested by other users.

Was this reply helpful? Yes No