web
You’re offline. This is a read only version of the page.
close
Skip to main content

Announcements

No record found.

News and Announcements icon
Community site session details

Community site session details

Session Id :
Dynamics 365 Community / Forums / Finance | Project Operations, Human Resources, ... / Record Level Security ...
Finance | Project Operations, Human Resources, ...
Answered

Record Level Security behavior

(0) ShareShare
ReportReport
Posted on by Isabelle Nguyen 7

Hi,

Currently I ran into a weird issue with Record Level Security in AX2009 and it's quite confusing.

We use RLS for item table, using a customized field 'Security Code' to classify item for each User group. Now, we discover that an User, not belonging to any User Group owning the access right to item AAA, can still input AAA into transaction lines, detail as following:

  • Unauthorized User input item AAA (which he is not allowed to access) to Transfer Order line, which is an unsuccessful action and info log show error 'The value AA in field 'Item number' is not found in relating table 'Items';
  • User ignores the info log and re-input item AAA the second time, AAA is successfully inputted.


Though checking Item table, that User cannot filter/see item AAA at all.

We have been testing a lot to try to figure out if there is any right-overlapping User Group but even when the User has no right to access item records, he can still input the value to transaction lines. Is it considered a behavior of AX, or a bug? Could anyone please advise me for this case?

Thank you so much in advance.

I have the same question (0)
  • Verified answer
    André Arnaud de Calavon Profile Picture
    André Arnaud de Cal... 304,121 Super User 2026 Season 1 on at

    Hi Isabelle,

    RLS in AX2009 is only a client filter of records; it is not enforcing the security on the server/database side, like eXtensible Data Security (XDS) does in AX2012 and Dynamics 365. RLS has shortcomings. XDS is the successor for RLS and also has the option to check for all CRUD actions.

    If you need to have the security enforced in AX2009, you would need an additional customization.

  • Isabelle Nguyen Profile Picture
    Isabelle Nguyen 7 on at

    Thank you so much, André. I understand RLS more now.

Under review

Thank you for your reply! To ensure a great experience for everyone, your content is awaiting approval by our Community Managers. Please check back later.

Helpful resources

Quick Links

Introducing the 2026 Season 1 community Super Users

Congratulations to our 2026 Super Stars!

Meet the Microsoft Dynamics 365 Contact Center Champions

We are thrilled to have these Champions in our Community!

Congratulations to the March Top 10 Community Leaders

These are the community rock stars!

Leaderboard > Finance | Project Operations, Human Resources, AX, GP, SL

#1
Giorgio Bonacorsi Profile Picture

Giorgio Bonacorsi 689

#2
André Arnaud de Calavon Profile Picture

André Arnaud de Cal... 478 Super User 2026 Season 1

#3
Syed Haris Shah Profile Picture

Syed Haris Shah 258 Super User 2026 Season 1

Last 30 days Overall leaderboard

Featured topics

End-of-life Announcement for Microsoft Dynamics GP
License usage reporting (in-app and PPAC) with Entra dynamic groups

Product updates

Dynamics 365 release plans