web
You’re offline. This is a read only version of the page.
close
Skip to main content

Notifications

Announcements

Season of Giving Solutions is Here!
Sign Up for Ask a Community Pro Today!
Introducing our New Video Series: Community Spotlight
News and Announcements icon
Community site session details

Community site session details

Session Id :
Dynamics 365 Community / Forums / Customer experience | Sales, Customer Insights,... / Cannot save "Lead...
Customer experience | Sales, Customer Insights,...
Answered

Cannot save "Lead" record with specific Accounts in a Lookup field

(0) ShareShare
ReportReport
Posted on by JRussell1738 47

We are using the lead entity to create prospect records. Users with specific security roles are unable to create/update the lead record when an account record is associated in some cases. Records can be created/updated if there is no account associated.However, it appears it is only caused when there are specific account records used, as some records have been saved with an account record present.I haven't been able to tell what the difference is between accounts that are working and the accounts that have issues. We have a N:1 relationship between the Lead:Account (meaning multiple leads can be associated with a single account).

As far as I can tell, there are no updates to the Account record when the lead record is saved. If this was not working for ANY account, I would think it's a security role issue, but since it's working for some account records and not others, I am perplexed.

LeadRecordIssue1.jpg

LeadRecordIssue2.jpg

Any help is greatly appreciated. 

I have the same question (0)
  • JRussell1738 Profile Picture
    JRussell1738 47 on at

    Updating that role to Business Unit solved the issue! Thanks for answering!

  • Verified answer
    Bipin D365 Profile Picture
    Bipin D365 28,983 Moderator on at

    Hi,

    As per log AppendTo privilege on Account entity At Business Unit Level is missing.

    "EntityName":"account","ObjectBusinessUnitId":"42c2c952-7de7-de11-a259-0050569c7de4","RightsToCheck":"AppendToAccess","RoleAccessRights":"None","PoaAccessRights":"None","HsmAccessRights":"None","GrantedAccessRights":"None"

    please provide this access and try.

    Local is nothing but Business Unit.

    docs.microsoft.com/.../security-roles-privileges

    Please mark my answer verified if i were helpful

  • Suggested answer
    LuHao Profile Picture
    LuHao 40,892 on at

    Hi partner,

    You can check if the user's security role has the Append permission of Opportunity and Append To permission of Account.

    Please refer to https://powerobjects.com/2015/03/18/definitions-append-and-append-to-dynamics-crm/

    In addition, you could refer these blogs to find the missing priv.

    danielbergsten.wordpress.com/.../

    www.businessintelligenceinfo.com/.../model-driven-power-apps-and-permission-issues

  • JRussell1738 Profile Picture
    JRussell1738 47 on at

    I've updated the security role to have the "Append" and "Append To" privilege on the Lead and Account records.

    The log Details from "Show Details"
    null
    Activity Id: fe070d5f-df17-443b-9d79-d7841aa3a636
    --NOT VERY HELPFUL

    From Network tab of Dev Tool
    {error: {code: "0x80048306",…}}
    error: {code: "0x80048306",…}
    @Microsoft.PowerApps.CDS.ErrorDetails.ApiActivityIdKey: "41f66740-c5ea-4308-9f18-e4bfe960cbdb"
    @Microsoft.PowerApps.CDS.ErrorDetails.ApiDepthKey: "1"
    @Microsoft.PowerApps.CDS.ErrorDetails.ApiExceptionCategory: "ClientError"
    @Microsoft.PowerApps.CDS.ErrorDetails.ApiExceptionHttpStatusCode: "403"
    @Microsoft.PowerApps.CDS.ErrorDetails.ApiExceptionMesageName: "unManagedIdsAccessDenied"
    @Microsoft.PowerApps.CDS.ErrorDetails.ApiExceptionSourceKey: "Plugin/Microsoft.Crm.ObjectModel.CustomBusinessEntityService"
    @Microsoft.PowerApps.CDS.ErrorDetails.ApiPluginSolutionNameKey: "System"
    @Microsoft.PowerApps.CDS.ErrorDetails.ApiStepKey: "94cdbb1b-ea3e-db11-86a7-000a3a5473e8"
    @Microsoft.PowerApps.CDS.ErrorDetails.ApiStepSolutionNameKey: "System"
    @Microsoft.PowerApps.CDS.HelpLink: "">go.microsoft.com/.../
    @Microsoft.PowerApps.CDS.InnerError.Message: "{"CallerPrincipal":{"PrincipalId":"b006c8f4-b400-ea11-a811-000d3a55df98","Type":8,"IsUserPrincipal":true},"OwnerPrincipal":{"PrincipalId":"924aca5f-f5fc-e111-8b9f-78e3b511b63d","Type":9,"IsUserPrincipal":false},"ObjectId":"cd027af0-a320-e311-8f9c-b4b52f67d672","ObjectTypeCode":1,"EntityName":"account","ObjectBusinessUnitId":"42c2c952-7de7-de11-a259-0050569c7de4","RightsToCheck":"AppendToAccess","RoleAccessRights":"None","PoaAccessRights":"None","HsmAccessRights":"None","GrantedAccessRights":"None","Messages":["PrincipalHasOwnerPrincipalWithAtLeastBasicPrivilegeDepth = False","EntityUserGroupRights = None","MinimumPrivilegeDepthRequired = Local","SecLib::AccessCheckEx2 failed. Owner Data: teamType=0, privilegeCount=350; Principal Data: roleCount=13, privilegeCount=67, accessMode=0"],"EntityOwnershipTypeMask":1,"CallerInfo":{"IsSystemUser":false,"IsSupportUser":false,"IsAdministrator":false,"IsCustomizer":false,"IsDisabled":false,"IsIntegrationUser":false,"Teams":null,"Roles":null},"ReadOnlyState":"UserAndOrgFullAccess","IsHsmEnabled":false,"HsmInfo":null}"
    code: "0x80048306"
    message: "{"CallerPrincipal":{"PrincipalId":"b006c8f4-b400-ea11-a811-000d3a55df98","Type":8,"IsUserPrincipal":true},"OwnerPrincipal":{"PrincipalId":"924aca5f-f5fc-e111-8b9f-78e3b511b63d","Type":9,"IsUserPrincipal":false},"ObjectId":"cd027af0-a320-e311-8f9c-b4b52f67d672","ObjectTypeCode":1,"EntityName":"account","ObjectBusinessUnitId":"42c2c952-7de7-de11-a259-0050569c7de4","RightsToCheck":"AppendToAccess","RoleAccessRights":"None","PoaAccessRights":"None","HsmAccessRights":"None","GrantedAccessRights":"None","Messages":["PrincipalHasOwnerPrincipalWithAtLeastBasicPrivilegeDepth = False","EntityUserGroupRights = None","MinimumPrivilegeDepthRequired = Local","SecLib::AccessCheckEx2 failed. Owner Data: teamType=0, privilegeCount=350; Principal Data: roleCount=13, privilegeCount=67, accessMode=0"],"EntityOwnershipTypeMask":1,"CallerInfo":{"IsSystemUser":false,"IsSupportUser":false,"IsAdministrator":false,"IsCustomizer":false,"IsDisabled":false,"IsIntegrationUser":false,"Teams":null,"Roles":null},"ReadOnlyState":"UserAndOrgFullAccess","IsHsmEnabled":false,"HsmInfo":null}"

    Is there anything there that points to the missing Security Privilege?

  • Suggested answer
    Bipin D365 Profile Picture
    Bipin D365 28,983 Moderator on at

    Hi,

    Could you please click on Show Details button and  download log to check the missing privilege.

    Also you can check Network Tab from Developer Tool (Hit F12) and perform the same operation then check Network tab to get detailed error.

    Check If user security role has Append and Append To privilege on Lead and Account.

    Please mark my answer verified if i were helpful

Under review

Thank you for your reply! To ensure a great experience for everyone, your content is awaiting approval by our Community Managers. Please check back later.

Helpful resources

News and Announcements

Season of Giving Solutions is Here!
Sign Up for Ask a Community Pro Today!
Introducing our New Video Series: Community Spotlight

Quick Links

Responsible AI policies

As AI tools become more common, we’re introducing a Responsible AI Use…

Congratulations to our 2025 Community Spotlights

Thanks to all of our 2025 Community Spotlight stars!

Congratulations to the December Top 10 Community Leaders!

These are the community rock stars!

Leaderboard > Customer experience | Sales, Customer Insights, CRM

#1
Tom_Gioielli Profile Picture

Tom_Gioielli 98 Super User 2025 Season 2

#2
Pallavi Phade Profile Picture

Pallavi Phade 91

#3
TAHER_El_Mehdi Profile Picture

TAHER_El_Mehdi 58

Last 30 days Overall leaderboard

Featured topics

Hide selecting Contact for potential customer when creating quote

Product updates

Dynamics 365 release plans