Enable Field Security on specific records

(0) Share

Report

Posted on by Manuel Steiner

192

I'm new to the CRM-development.

I want to censor a few fields for all users except the admins but not for all records of the entity. The records have an attribute that is already censored and based on that I have to censor the rest. The attributes that have to be censored are included in views too.

Example:

A record has the attribute "recordid". If the attribute "recordid" is censored, then the attribute "custom_name" and "custom_firstname" should be censored for all users except the admins.

*This post is locked for comments

All responses (12)

Answers (1)

Manuel Steiner 192 on at

Like (1)

Report

RE: Enable Field Security on specific records

Hi Ravi Kashyap

We could convince the other Company to censor the rest of the fields and you were right it isn't possible unless I do it like Guido suggested

Manuel
Suggested answer

Filip Vanchevski 215 on at

Like (0)

Report

RE: Enable Field Security on specific records

This link might be of help to you.

https://www.microsoft.com/en-us/dynamics/crm-customer-center/set-up-security-permissions-for-a-field.aspx

[View:https://www.microsoft.com/en-us/dynamics/crm-customer-center/set-up-security-permissions-for-a-field.aspx:750:50]
Suggested answer

Filip Vanchevski 215 on at

Like (0)

Report

RE: Enable Field Security on specific records

Hi Manuel,

I have dealt with a similar problem this month i'm not sure if it will get the job done but it might give you an idea on how to proceed.

1. So if you go to settings and under field security you can create a new Field Security Profile.

2. Once you give it a name and description under common you can select the fields you want to update the security privs. For example you can allow read/create/update priv. for those fields.

3. After that in the Members section you can add members for which to apply the new Field Security Profile.

The only downside to this is that you will either have to create specific teams (if you have a lot of users) or simply add users, unfortunately i have not found a way to select all users that have a certain type of security role in the organisation, this means that you can apply this only for specific users which in turn means that depending on how many users you want to hide the fields from this solution might create a nightmare in terms of having to constantly update the new Security Profile as your user base increases.

Hope it helps, all the best! :)
Suggested answer

ashlega 34,475 on at

Like (0)

Report

RE: Enable Field Security on specific records

Hi,

if you wanted to use field security, you probably could.. but you would need to figure out how to apply the technique described here:

mscrmtools.blogspot.ca/.../create-truly-personal-field-with-field.html

And you may end up with a lot of sharing..
Verified answer

RaviKashyap 55,410 on at

Like (0)

Report

RE: Enable Field Security on specific records

Hi Manuel,

I don't think you can use field security to achieve this as you are looking for conditional security based on the field. I can't think of any straight forward way to achieve this.

As Guido suggested above, the easiest way is to have 2 sets f field secured & unsecured and based on the recordid field, populate the data on these field.
Community Member Microsoft Employee on at

Like (0)

Report

RE: Enable Field Security on specific records

Hi Manuel,

Field security profile is the best way to go...!!!!!

But you are saying you want to conditionally apply the rule for few records of an entity.

I think as user is not allowed to have access to the data in the field values even if he opens the DOM explorer he would not able to find the value in the field if Field level security is enabled.

But the only thing is you need to ensure except for system admins if others need access to data they should be part of Field Security profile.

They would not be able to access data from advanced find as well in this case.

Thanks

Phanidhar
Manuel Steiner 192 on at

Like (0)

Report

RE: Enable Field Security on specific records

Hi Ravi Kashyap

unfortunately, we didn't censor the other fields. they come from another interface by another company. They won't censor the rest of the fields.
Manuel Steiner 192 on at

Like (0)

Report

RE: Enable Field Security on specific records

Hi Phanidhar

The value of the field recordid comes from an interface from another company that imports data. So our company didn't censor the other fields.

The customer just said censor the fields. Users should not have access to the field values in any way (even if they search it with the DOM explorer) because the fields contain private data.
RaviKashyap 55,410 on at

Like (0)

Report

RE: Enable Field Security on specific records

Hi Manuel,

You mentioned you have already censored(enabled field security) for recordid, Now you want to implement the same for 2 other field if recordid is cencored.

Why don't you just implement the field security directly to other field the same you did it for recordid?
Suggested answer

Guido Preite 54,081 Super User 2024 Season 1 on at

Like (1)

Report

RE: Enable Field Security on specific records

the easiest way it to create two additional fields that are always secured, so when the record should not be secured put the information in the two normal fields, when the record needs to be secured put the information inside the secured fields, admin can read always all in both cases and you don't deal with customizations

Enable Field Security on specific records

Helpful resources

Quick Links

December Spotlight Star - Muhammad Affan

Top 10 leaders for November!

Tips for Writing Effective Suggested Answers

Leaderboard

Featured topics

Product updates

Enable Field Security on specific records

Helpful resources

Quick Links

December Spotlight Star - Muhammad Affan

Top 10 leaders for November!

Tips for Writing Effective Suggested Answers

Subscribe to

Leaderboard

Featured topics

Product updates