Small and medium business | Business Central, N...

how to limit the access to the sandbox for an user.

(0) Share

Report

Posted on by santarzan

405

HI All,

I want the user in production environment, to get restricted from switching to the sandbox.

but i dint find a option to restrict the below menu.

I have the same question (0)

All responses (9)

Answers (0)

Suggested answer

Inge M. Bruvik 1,105 Moderator on at

Like (0)

Report

Create an AzureAD security group. Put the sandbox users in that group and assign the security group to the Sandbox enviornment.

Was this reply helpful? Yes No
santarzan 405 on at

Like (0)

Report

HI Inge,

Thanks for the quick response, so we dont have any option to restrict using the permission set?

Was this reply helpful? Yes No
Suggested answer

Inge M. Bruvik 1,105 Moderator on at

Like (0)

Report

Not if you want them to not being able to access the sandbox at all - then it is the Azure AD security group that must be used.

You can of course allow them access and assign them a permission set with a minimum of permissions but then they can still access the sandbox per say.

Was this reply helpful? Yes No
Horia Micu on at

Like (0)

Report

You can restricte user from switching to the sandbox or other environments by inactivating the user on specific environments .

This will block him/her to access a BC environment where is not active anymore.

Was this reply helpful? Yes No
Suggested answer

Mohana Yadav 60,993 Super User 2025 Season 2 on at

Like (0)

Report

You can follow the below blog steps to restrict the access to environments

mohana-dynamicsnav.blogspot.com/.../restrict-access-to-d365-business.html

Was this reply helpful? Yes No
Suggested answer

Inge M. Bruvik 1,105 Moderator on at

Like (0)

Report

[quote user="Horia Micu"]
You can restricte user from switching to the sandbox or other environments by inactivating the user on specific environments .

This will block him/her to access a BC environment where is not active anymore.
[/quote]
What steps will you take to do that with out using the Azure AD security groups?

What you do within BC permission will permit what you can do within BC, not the access to the environment it self.

learn.microsoft.com/.../manage-access-environments-using-azure-active-directory-groups

Was this reply helpful? Yes No
Suggested answer

YUN ZHU 95,331 Super User 2025 Season 2 on at

Like (1)

Report

Hi, hope the following helps as well.

Manage access to environments using Azure Active Directory groups (Security Group in Admin Center)

https://yzhums.com/18304/

And, with this release, we can use Security Group to manage user permission sets.

More details: Business Central 2023 wave 1 (BC22) new features: Manage user permissions using Azure Active Directory security groups (‘User Group’ -> ‘Security Group’)

https://yzhums.com/35161/

Thanks.

ZHU

Was this reply helpful? Yes No
Synapp 4 on at

Like (0)

Report

Hi @YUN ZHU

Have you tried adding the same Security Group to two different Sandboxes?
I created a 3 Sandboxes
Testing1
Testing2
Development

Two Security Groups
testingEnvAccess
developmentEnvAccess

Environment Security Group assigned

Testing1 testingEnvAccess

Testing2 testingEnvAccess

Development developmentEnvAccess

The two Testing Environments did not appear on the list with this configuration.

Not sure if it matters, but we're using AD-Connect to sync on premise Groups to Entra. They are synchronized, because if not, we could not select them from the BC admin page.

Was this reply helpful? Yes No
Suggested answer

Khushbu Rajvi. 20,275 Super User 2025 Season 2 on at

Like (1)

Report

Hope this helps: https://community.dynamics.com/blogs/post/?postid=c93c34d5-8ae6-4a79-bad7-2f043b5a957d#:~:text=Go%20to%20Security%20tab%20and%20select%20the%20newly%20created%20Security%20group.&text=Follow%20same%20steps%20and%20create,in%20'Sandbox%E2%80%9D%20security%20group.&text=Select%20the%20environment%20to%20which,assign%20the%20newly%20created%20group.

Was this reply helpful? Yes No