I have a client who added an active Directory user to SQL and gave him DYNGRP access to Dynamics and the GP COMPANIES, he uses Azure Data Studio to query the data- he only wants him to see certain tables because of what he is working on (does not want him to see the GL, payroll tables etc) Is there a way to limit what GP Tables the users can access in SQL when querying data
They should revoke access to the DYNGRP role since that gives both read and write access.
Have them define a new database role in SQL Server with read only access to the proper database objects.
As mentioned, DYNGRP gives access to all tables, views and stored procedures in the GP database that the user is assigned that role.
You could potentially use the RPT_ database roles. We use those for permissions for the Excel and SSRS reports to pull data from the GP databases. They work similar to the GP security roles in that, if you assign someone the RPT_HR Manager role, they'll only really have access to the tables/data that the role would normally need.
There's different ways you could potentially do something like this.
Thanks
Under review
Thank you for your reply! To ensure a great experience for everyone, your content is awaiting approval by our Community Managers. Please check back later.
As AI tools become more common, we’re introducing a Responsible AI Use…
We are honored to recognize Abhilash Warrier as our Community Spotlight honoree for…
These are the community rock stars!
Stay up to date on forum activity by subscribing.
CA Neeraj Kumar 2,028
André Arnaud de Cal... 878 Super User 2025 Season 2
Sohaib Cheema 579 User Group Leader
