Small and medium business | Business Central, N...

how to limit the access to the sandbox for an user.

(0) Share

Report

Posted on by santarzan

HI All,

I want the user in production environment, to get restricted from switching to the sandbox.

but i dint find a option to restrict the below menu.

All responses (9)

Answers (0)

Suggested answer

Inge M. Bruvik on at

Like (0)

Report

RE: how to limit the access to the sandbox for an user.

Create an AzureAD security group. Put the sandbox users in that group and assign the security group to the Sandbox enviornment.
santarzan on at

Like (0)

Report

RE: how to limit the access to the sandbox for an user.

HI Inge,

Thanks for the quick response, so we dont have any option to restrict using the permission set?
Suggested answer

Inge M. Bruvik on at

Like (0)

Report

RE: how to limit the access to the sandbox for an user.

Not if you want them to not being able to access the sandbox at all - then it is the Azure AD security group that must be used.

You can of course allow them access and assign them a permission set with a minimum of permissions but then they can still access the sandbox per say.
Horia Micu on at

Like (0)

Report

RE: how to limit the access to the sandbox for an user.

You can restricte user from switching to the sandbox or other environments by inactivating the user on specific environments .

This will block him/her to access a BC environment where is not active anymore.
Suggested answer

Mohana Yadav on at

Like (0)

Report

RE: how to limit the access to the sandbox for an user.

You can follow the below blog steps to restrict the access to environments

mohana-dynamicsnav.blogspot.com/.../restrict-access-to-d365-business.html
Suggested answer

Inge M. Bruvik on at

Like (0)

Report

RE: how to limit the access to the sandbox for an user.

[quote user="Horia Micu"]
You can restricte user from switching to the sandbox or other environments by inactivating the user on specific environments .

This will block him/her to access a BC environment where is not active anymore.
[/quote]
What steps will you take to do that with out using the Azure AD security groups?

What you do within BC permission will permit what you can do within BC, not the access to the environment it self.

learn.microsoft.com/.../manage-access-environments-using-azure-active-directory-groups
Suggested answer

YUN ZHU on at

Like (1)

Report

RE: how to limit the access to the sandbox for an user.

Hi, hope the following helps as well.

Manage access to environments using Azure Active Directory groups (Security Group in Admin Center)

https://yzhums.com/18304/

And, with this release, we can use Security Group to manage user permission sets.

More details: Business Central 2023 wave 1 (BC22) new features: Manage user permissions using Azure Active Directory security groups (‘User Group’ -> ‘Security Group’)

https://yzhums.com/35161/

Thanks.

ZHU
Synapp on at

Like (0)

Report

how to limit the access to the sandbox for an user.

Hi @YUN ZHU

Have you tried adding the same Security Group to two different Sandboxes?
I created a 3 Sandboxes
Testing1
Testing2
Development

Two Security Groups
testingEnvAccess
developmentEnvAccess

Environment Security Group assigned

Testing1 testingEnvAccess

Testing2 testingEnvAccess

Development developmentEnvAccess

The two Testing Environments did not appear on the list with this configuration.

Not sure if it matters, but we're using AD-Connect to sync on premise Groups to Entra. They are synchronized, because if not, we could not select them from the BC admin page.
Suggested answer

Khushbu Rajvi. on at

Like (1)

Report

how to limit the access to the sandbox for an user.

Hope this helps: https://community.dynamics.com/blogs/post/?postid=c93c34d5-8ae6-4a79-bad7-2f043b5a957d#:~:text=Go%20to%20Security%20tab%20and%20select%20the%20newly%20created%20Security%20group.&text=Follow%20same%20steps%20and%20create,in%20'Sandbox%E2%80%9D%20security%20group.&text=Select%20the%20environment%20to%20which,assign%20the%20newly%20created%20group.