Skip to main content

Notifications

Announcements

No record found.

News and Announcements icon
Community site session details

Community site session details

Session Id :
Dynamics 365 Community / Forums / Dynamics 365 general forum / Need to Block Users in...
Dynamics 365 general forum

Need to Block Users in Top Level BU From Seeing other Top Level BU user's activities but allowing all top level users to see all activities in all child BUs

(0) ShareShare
ReportReport
Posted on by ACECORP 1,583

I have a unique security case that I am hoping someone can advise me on.

I have a top level business unit called CBU and many child level business units to which CBU is the parent.

I have three sets of users.

  • Some Users are IT users and sit in the IT Team

  • Some Users are EXO users and sit in the EXO Team

  • Some Users are GM users and sit in the GM Team

The security requirements that pertain to these three sets of users are listed below. 

  • All three sets of users in the top level BU called CBU MUST be able to see all activities in all of the child bushiness units.

  • However, All GM Users in the parent/top level BU called CBU must NOT be able to see any activities of EXO users or IT users.

  • Likewise, All EXO users in the parent/top level BU called CBU must NOT be able to see any activities of GM users or IT users.

  • All IT users in the parent/top level BU called CBU must be able to see all activities.

I think what makes this situation problematic is the very first requirement of All three sets of users MUST be able to see all activities in all of the child bushiness units.

I am hoping there is an easy way to do what I need to do and I am simply unable to think of what it is.

Any recommendations or advise would be greatly appreciated.

Categories:
Customization / Solutions / SDK and API
Security
  • Suggested answer
    ACECORP Profile Picture
    ACECORP 1,583 on at
    RE: Need to Block Users in Top Level BU From Seeing other Top Level BU user's activities but allowing all top level users to see all activities in all child BUs

    The solution for this was as follows:

    Create a new BU -- add GM Users to new BU.

    Create a <ChildBU>_GM_Team in each child BU and add the GM users to each one.

    Create a new security role and set appropriately. Add the security role to the <ChildBU>_GM_Team and new GM BU.

Under review

Thank you for your reply! To ensure a great experience for everyone, your content is awaiting approval by our Community Managers. Please check back later.

Helpful resources

Quick Links

November Spotlight Star - Khushbu Rajvi

Congratulations to a top community star!

Forum Structure Changes Coming on 11/8!

In our never-ending quest to help the Dynamics 365 Community members get answers faster …

Dynamics 365 Community Platform update – Oct 28

Welcome to the next edition of the Community Platform Update. This is a status …

Leaderboard

#1
André Arnaud de Calavon Profile Picture

André Arnaud de Cal... 292,516 Super User 2025 Season 1

#2
Martin Dráb Profile Picture

Martin Dráb 231,407 Most Valuable Professional

#3
nmaenpaa Profile Picture

nmaenpaa 101,156

Leaderboard

Featured topics

Product updates

Dynamics 365 release plans