Hi.
I'm investigating implementing some extra security using the position hierarchy model.
I had looked into this several months ago & having done some research it seemed as if users would only have full write level access to data if the user the data was shared with was no more than one level below them in the hierarchy model.
Any further down the model and the records were read-only access only.
My testing at this time seemed to indicate that this was the case.
I did a few tests today now (months later) and I'm finding that the records now all seem to be writeable. Has the way Microsoft implement this type of security changed recently?
Or maybe there is another explanation for the fact that I am able to edit the records?
Below is a sample of how I have setup the position hierarchy...
I share a particular contact record with User Z, who is part of the Sub Branch D hierarchy (the lowest one).
I log into CRM as User X, who is part of the Main Branch hierarchy.
I have full write access to the contact record (all my security roles are set to have user level read and write access only - so it isn't the case that these roles supercede the position hierarchy).
Should I not have read-only access to this contact record, given that it is that many levels deep down the hierarchy?
Hierarchy 1: Main Branch
Hierarchy 2: Sub Branch A (parent hierarchy is Main Branch)
Hierarchy 3: Sub Branch B (parent hierarchy is Sub Branch A)
Hierarchy 4: Sub Branch C (parent hierarchy is Sub Branch B)
Hierarchy 5: Sub Branch D (parent hierarchy is Sub Branch C)
Thanks
7
Share
Report
All responses (
Answers (
