Finance | Project Operations, Human Resources, ...

how deep can be hierarchy of security roles working properly when assigned to user ?

(0) Share

Report

Posted on by SYNAPIS IT

1,257

Hi All,

I've noticed situation setting up security roles for user as a 'hierarchy' that we can use only 2 (two) levels of security roles - deeper levels don't work properly. Am I right ? otr there is any parameter defining depth of such 'hierarchy' ? In my situation - I have created a role A where I assigned role B which included role C and then i noticed that access defined by role C doesn't work.

I'd be glad of any suggestions

Witold

I have the same question (0)

All responses (4)

Answers (0)

Sort by

Suggested answer

Hana Xue Microsoft Employee on at

Like (0)

Report
Copy link

Link copied!

Hi Witold,

The colored circles on the security role settings page define the access level for that privilege. Access levels determine how deep or high in the organizational business unit hierarchy the user can perform the specified privilege.

According to the document description, the deep option allows access to the information of the entire business unit and subordinate unit. This access level is also called "parent: child business unit", which means that this level of access rights should be as you said, two layer. And you can set the level you need according to the article description.

Security roles in Dynamics 365 Customer Engagement (on-premises) | Microsoft Learn

Best Regards,

Hana

Was this reply helpful? Yes No
Suggested answer

André Arnaud de Cal... 305,001 Super User 2026 Season 1 on at

Like (1)

Report
Copy link

Link copied!

Hi Witold,

I created a security role with sub roles 3 levels deep. So, it was one main role (1), a sub role (2), on (2) a subrole (3). And on (3) a subrole (4).

This is working correctly. Did you achieve the role development in Visual Studio or did you configure the roles in the application using the Security configuration form?

In case of Visual Studio, ensure the build and a database sync is performed.

In case of configuration, ensure that all objects are published.

PS. You can ignore the link provided by Hana as that is not having a relation with Dynamics 365 F&O.

Was this reply helpful? Yes No
André Arnaud de Cal... 305,001 Super User 2026 Season 1 on at

Like (0)

Report
Copy link

Link copied!

Hi Witold,

I just learned that one of our customers has an issue in their environment where a view is giving errors. The name of the view is SecurityRoleUnionView. It gives an error during synchronization about an invalid object name SECURITYROLESUBROLEUNION. Can you check if your environment has this same issue as it can be related for not having all sub-roles working correctly.

Was this reply helpful? Yes No
SYNAPIS IT 1,257 on at

Like (0)

Report
Copy link

Link copied!

sorry - but I can't mark some replies as answer here...

Thanks for you support

Witold

Was this reply helpful? Yes No