Finance forum

Table permission framework

(0) Share

Report

Posted on by @rp@n

Dear all,

Can you please let me know what is Table permission framework? How it's work?

Please give me more she'd on this

Thanks

Categories:

Development / Customization / SDK

I have the same question (0)

All responses (8)

Answers (4)

Suggested answer

Martin Dráb 238,789 Most Valuable Professional on at

Like (0)

Report
Copy link

Link copied!

As usual, you can find some information in the documentation: Manage data access by using the Table Permissions Framework.

Was this reply helpful? Yes No
Verified answer

Community Member on at

Like (0)

Report
Copy link

Link copied!

Hi @rp@n ,

In addition,there is some changes in d365fo against ax2012:alexdmeyer.com/.../advanced-security-changes-in-dynamics-365-enterprise

The table permission framework feature is used to provide an extra layer of security to your high business impact data (credit card numbers, social security numbers, etc). It is an extra check that the security framework does that requires that the user have been granted explicit rights to the table field for them to be able to interact with it. So even if a user has been given Delete permissions through a role, duty, or privilege to this table they still need an additional permission to View or Update this field for them to actually have rights to it.

The property that allows for this is called AosAuthorization in the AOT, if it is turned on (like it is below for the TaxLicenseNum field on the CustTable) then the table permission framework is active.

In AX 2012, this feature was somewhat cumbersome to use as you had to turn it on for the table and then go to each individual field and turn it on or off respectively. In D365FO, you can now go directly to the field you would like to turn this feature on for, and enable it without having to worry about the table aspect.

Best Regards

Tom Cai

Was this reply helpful? Yes No
@rp@n 30 on at

Like (0)

Report
Copy link

Link copied!

Thanks Tom

So, that means AX 2012 we assigned TPF on Entire table based on Authorization framework but in D365FO we can assigned in each and every table field instead of table.

TPF is enabled only when AOS authorization property is ON?

Please give me more she'd on this

Thanks!

Was this reply helpful? Yes No
Verified answer

Sukrut Parab 71,710 Moderator on at

Like (0)

Report
Copy link

Link copied!

Yes it is enabled by AOSAutorization property . In D365 you can set it directly on the field without enabling on the table.

Was this reply helpful? Yes No
@rp@n 30 on at

Like (0)

Report
Copy link

Link copied!

Thanks Sukrut and Tom

Can you please let me know how I will test that AOS authorization property is working or not.

Please give me more she'd on this

Was this reply helpful? Yes No
Verified answer

André Arnaud de Cal... 303,397 Super User 2026 Season 1 on at

Like (0)

Report
Copy link

Link copied!

Hi Arpan,

To test it, set the TPF on a table and/or fields. Add this table on a form. Create a menu item. Then create a privilege which grants full access on the menu item. At this point, don't add table permissions. Add the privilege to a duty or role. Build the solution and synchronize the database.

Then assign the role to a test user which does not have system administrator rights.

You should get an error that there is no access for the table/fields.

Then you can add table permissions for this table/field on the privilege and role. Again build and sync. Then the error should not appear.

Was this reply helpful? Yes No
@rp@n 30 on at

Like (0)

Report
Copy link

Link copied!

Thanks Andre

Is't come under BP to have a AOS Authorization in table fields? OR

It's optional, we can assign based on requirement.

Please give me more she'd on this

Thanks!

Was this reply helpful? Yes No
Verified answer

Sukrut Parab 71,710 Moderator on at

Like (0)

Report
Copy link

Link copied!

It is not BP . You can used it based on ur requirement.

Was this reply helpful? Yes No