Small and medium business | Business Central, N...

Trouble with Permissions

(3) Share

Report

Posted on by Fares

123

Hello,

I find it it very difficult to ffigure out how to build my permission sets for my users without giving them more access than I want and without having to add every single permission needed one by one.

For example, a new employee is getting a permission issue when trying to connect to BC, not being able to execute CodeUnit 7233 Master data Management. But we had no such issue before and the employee is not going to be using anything related to the master data functionality. If the permission is a basic one for logging in first time, why is not part of D365 Basic for example ?

I also have a new categories of employees that will have very restricted access but I don't know how to give the correct permissions without adding them one by one. I'm afraid to rely on the Record Permissions functionality because I can't make sure whether it will give more than strictly necessary.

Thank you for the help,

Fares

Categories:

Dynamics 365 Business Central

I have the same question (0)

All responses (5)

Answers (1)

Suggested answer

Sohail Ahmed 10,983 Super User 2025 Season 2 on at

Like (1)

Report

Trouble with Permissions

Maybe this will help simplify your process.

Yes, permission management in BC can be tricky. Here are a few tips:

1. Start with Minimal Role + Record Permissions

Assign a basic role (like D365 Read or very limited custom role).

Use Record Permissions only during test sessions to log what's missing, then manually review and clean it up.

2. Use Permission Recorder Carefully

Run the Permission Recorder while performing only the intended tasks.

Then export, review, and edit the set — remove anything unnecessary (e.g., unintended background calls like Codeunit 7233).

3. Avoid Overreliance on Built-In Roles

Built-in roles like D365 BASIC may include access to features your users won’t use.

Create your own roles starting from scratch or duplicating existing ones, then trimming.

If you’re repeatedly creating roles for similar user types, consider creating role templates and reusing them.

Mark below checkbox to make this answer Verified if it helps you. Let me know if you’d like a sample minimal permission set.

Was this reply helpful? Yes No
Suggested answer

Khushbu Rajvi. 19,004 Super User 2025 Season 2 on at

Like (1)

Report

Trouble with Permissions

If this helps: https://resources.westerncomputer.com/blog/dynamics-365-business-central-tips-and-tricks-permissions-permissions-permissions-how-to-troubleshoot-permission-issues

https://www.syvantis.com/blog/how-to-fix-common-permission-errors-in-business-central#:~:text=Essentially%2C%20this%20requires%20you%20to,to%20eliminate%20the%20current%20error.

Was this reply helpful? Yes No
Suggested answer

YUN ZHU 90,115 Super User 2025 Season 2 on at

Like (2)

Report

Trouble with Permissions

For permission management, I personally recommend reverse management, that is, excluding permissions instead of adding permissions. Because Microsoft may add new logic every time it updates, and every update will affect permissions, which is very troublesome.

For example,

PS: Dynamics 365 Business Central: Permission Exclusion (Exclude in Permission Set)

https://yzhums.com/30562/

Hope this helps.

Thanks.

ZHU

Was this reply helpful? Yes No
Verified answer

Ramesh Kumar 7,503 Super User 2025 Season 2 on at

Like (2)

Report
Trouble with Permissions

This is known issue as everyone is different. But here are few tips which I use when creating the premissions for new user or team

Here are a few strategies you can use to manage permissions more effectively:

Start with existing permission sets: BC provides several predefined permission sets that you can use as a starting point. You can then customize these sets to fit your specific needs. For example, the "D365 BASIC" permission set is a good starting point for most users.

Use permission set groups: Permission set groups allow you to bundle multiple permission sets together, making it easier to assign a collection of permissions to users. You can create custom permission set groups that fit your organization's needs.

Analyze permission requirements: When encountering permission issues, use the Security Troubleshooting tool in BC to analyze the specific permissions required for a task or object. This can help you identify the root cause of the issue and add the necessary permissions.

Test and refine: When creating custom permission sets or groups, test them thoroughly to ensure they provide the necessary access without over-exposing sensitive data.

Record Permissions: You're right to be cautious with Record Permissions, as they can grant more access than intended. Use them judiciously and test thoroughly to ensure they're not over-granting permissions.

Thanks, Ramesh

If this was helpful, please check the "Does this answer your question?" box and mark it as verified.

Was this reply helpful? Yes No
Gerardo Rentería Ga... 22,526 Most Valuable Professional on at

Like (2)

Report

Trouble with Permissions

Hi, good day
I hope this can help you, and give you some hints.

Dynamics 365 Business Central: How to create or modify permissions by recording your actions (Record Permissions) | Dynamics 365 Lab

Best Regards
Gerardo

Was this reply helpful? Yes No