Skip to main content

Notifications

Announcements

No record found.

News and Announcements icon
Community site session details

Community site session details

Session Id :
Dynamics 365 Community / Forums / Finance | Project Operations, Human Resources, ... / Record Level Security ...
Finance | Project Operations, Human Resources, ...
Answered

Record Level Security behavior

(0) ShareShare
ReportReport
Posted on by Isabelle Nguyen 7

Hi,

Currently I ran into a weird issue with Record Level Security in AX2009 and it's quite confusing.

We use RLS for item table, using a customized field 'Security Code' to classify item for each User group. Now, we discover that an User, not belonging to any User Group owning the access right to item AAA, can still input AAA into transaction lines, detail as following:

  • Unauthorized User input item AAA (which he is not allowed to access) to Transfer Order line, which is an unsuccessful action and info log show error 'The value AA in field 'Item number' is not found in relating table 'Items';
  • User ignores the info log and re-input item AAA the second time, AAA is successfully inputted.


Though checking Item table, that User cannot filter/see item AAA at all.

We have been testing a lot to try to figure out if there is any right-overlapping User Group but even when the User has no right to access item records, he can still input the value to transaction lines. Is it considered a behavior of AX, or a bug? Could anyone please advise me for this case?

Thank you so much in advance.

  • Isabelle Nguyen Profile Picture
    Isabelle Nguyen 7 on at
    RE: Record Level Security behavior

    Thank you so much, André. I understand RLS more now.

  • Verified answer
    André Arnaud de Calavon Profile Picture
    André Arnaud de Cal... 294,261 Super User 2025 Season 1 on at
    RE: Record Level Security behavior

    Hi Isabelle,

    RLS in AX2009 is only a client filter of records; it is not enforcing the security on the server/database side, like eXtensible Data Security (XDS) does in AX2012 and Dynamics 365. RLS has shortcomings. XDS is the successor for RLS and also has the option to check for all CRUD actions.

    If you need to have the security enforced in AX2009, you would need an additional customization.

Under review

Thank you for your reply! To ensure a great experience for everyone, your content is awaiting approval by our Community Managers. Please check back later.

Helpful resources

Quick Links

🌸 Community Spring Festival 2025 Challenge 🌸

WIN Power Platform Community Conference 2025 tickets!

Jonas ”Jones” Melgaard – Community Spotlight

We are honored to recognize Jonas "Jones" Melgaard as our April 2025…

Kudos to the March Top 10 Community Stars!

Thanks for all your good work in the Community!

Leaderboard

#1
André Arnaud de Calavon Profile Picture

André Arnaud de Cal... 294,261 Super User 2025 Season 1

#2
Martin Dráb Profile Picture

Martin Dráb 233,013 Most Valuable Professional

#3
nmaenpaa Profile Picture

nmaenpaa 101,158 Moderator

Leaderboard

Featured topics

End-of-life Announcement for Microsoft Dynamics GP

Product updates

Dynamics 365 release plans