Skip to main content

Notifications

Sales forum
Answered

Record ownership

Posted on by 23

Hello,

My requirement is that any user of a Team should be able to (at a minimum) view the records owned by other members of the same Team. There are many different ways to do this but I was wondering if someone could point me at some best practice to help me select the appropriate one for my instance.

Some options I have considered include:

  • Create a Security Role to allow Read permission at the BU scope and assign that to the default BU Team.
  • Create a Flow to change the owner of a record from the creating User to the Team.

Any help welcome.

Categories:
  • Suggested answer
    Bassey Profile Picture
    Bassey 9 on at
    RE: Record ownership

    Hello renMike 

    Sure, here is the link to the documentation - learn.microsoft.com/.../security-roles-privileges detailing the different access levels.

  • Suggested answer
    Eiken Profile Picture
    Eiken on at
    RE: Record ownership

    Hi,

    Yes you are right, the access level should be 'Local'. 

    The whole process isn't be recorded in document, maybe you can try to use the data in Power Platform admin center.

  • renMike Profile Picture
    renMike 23 on at
    RE: Record ownership

    Does anyone know if this process is documented by Microsoft anywhere so I can refer to it in my design documentation as 'best practice'?

  • renMike Profile Picture
    renMike 23 on at
    RE: Record ownership

    Sounds good.

    So I create a Security Role with permissions to (at a minimum) read from the entities I need members in a BU to be able to read. I assign that Security Role to a Team within the Business Unit (probably the default Team) and that should allow all users in that Business Unit to read all others records regardless of whether they are owned by an individual user or the Team.

    Sounds like what I'm looking for and it avoids Flows which incur additional overhead (processing and maintenance).

  • Suggested answer
    Bassey Profile Picture
    Bassey 9 on at
    RE: Record ownership

    Hello renMike 

    You are correct, the scope should be business unit only for the security role you have configured.

    pastedimage1671114154138v1.png

    More info can be found here - learn.microsoft.com/.../security-roles-privileges

  • renMike Profile Picture
    renMike 23 on at
    RE: Record ownership

    Hi Eiken,

    I may be missing something here but in your example of the Security Role configuration you set each permission to use the 'Organisation' scope. This will meet the requirement of allowing the Users who are granted this role via a Team to see other Team members records, but won't it also permit them to see all Contact records in other Business Units too? This is less desirable.

    Would your recommendation still hold true if the scope applied to the Contact entity were limited to 'Business Unit' only?

    Thanks,

    renMike

  • Verified answer
    Eiken Profile Picture
    Eiken on at
    RE: Record ownership

    Hi,

    The most efficient method is creating a security role and apply it to the Team contains the users.

    1. Create a Team and with Users.

    pastedimage1671087015859v1.png

    1. Create a new security role and apply it on Team.

     pastedimage1671087060230v2.png

    pastedimage1671087085523v3.png

    Then any user of a Team can view the records about Contact owned by other members of the same Team.

    pastedimage1671087115887v4.png

    pastedimage1671087262403v5.png

  • Suggested answer
    Mohamed GRAIB Profile Picture
    Mohamed GRAIB 2,498 Super User 2024 Season 2 on at
    RE: Record ownership

    Hi Ren,

    The most easy is to create teams, and then assign security roles to each teams.

    Then if you want share records automatically between teams, you can create a workflow.

  • Guido Preite Profile Picture
    Guido Preite 54,059 Moderator on at
    RE: Record ownership

    create a security role and assign to each team that should respect this logic, looks the easiest way to me

Helpful resources

Quick Links

Dynamics 365 Community Update – Sep 9th

Welcome to the next edition of the Community Platform Update. This is a weekly…

Dynamics 365 Community Newsletter - August 2024

Catch up on the latest D365 Community news

Leaderboard

#1
André Arnaud de Calavon Profile Picture

André Arnaud de Cal... 290,186 Super User 2024 Season 2

#2
Martin Dráb Profile Picture

Martin Dráb 227,996 Super User 2024 Season 2

#3
nmaenpaa Profile Picture

nmaenpaa 101,148

Leaderboard

Featured topics

Product updates

Dynamics 365 release plans