web
You’re offline. This is a read only version of the page.
close
Skip to main content

Notifications

Announcements

No record found.

News and Announcements icon
Community site session details

Community site session details

Session Id :
Dynamics 365 Community / Forums / Finance | Project Operations, Human Resources, ... / Segregation of Duties ...
Finance | Project Operations, Human Resources, ...
Suggested Answer

Segregation of Duties conflicts

(4) ShareShare
ReportReport
Posted on by RC-06031946-0 8

Hello everyone,

I am currently working on implementing Segregation of Duties (SoD) within our Microsoft Dynamics 365 for Finance and Operations (D365FO) environment. I've encountered some challenges with identifying and resolving SoD conflicts in the out-of-the-box roles provided by Microsoft.

Could anyone provide guidance or share their experiences on the following:

  1. Are individual standard roles within D365FO free of excessive access or SOD conflicts?
  2. What are the common SoD conflicts identified in the standard roles provided by Microsoft D365FO?
  3. Are there any built-in tools or reports within D365FO that can help in identifying and managing these conflicts?
  4. What are the best practices for customizing roles to ensure compliance with SoD principles without compromising functionality?
  5. Any recommendations for third-party solutions or tools that can assist with SoD analysis and conflict resolution in D365FO?

I appreciate any advice, insights, or resources that you can provide.

Thank you!

 

Categories:
Dynamics 365 Finance
I have the same question (0)
  • Suggested answer
    Abhilash Warrier Profile Picture
    Abhilash Warrier 5,402 Super User 2025 Season 2 on at
    Hi there,
    Implementing Segregation of Duties (SoD) in Dynamics 365 for Finance and Operations (D365FO) can indeed be challenging. Here are some insights and guidance to help you navigate this process:
    1. Are individual standard roles within D365FO free of excessive access or SOD conflicts? –
    While standard roles in D365FO are designed to minimize excessive access, they are not entirely free of SoD conflicts. It's essential to review and customize these roles based on your organization's specific requirements
     
    1. What are the common SoD conflicts identified in the standard roles provided by Microsoft D365FO? –
    Common conflicts include roles that allow users to both create and approve transactions, manage vendor payments and reconcile bank statements, or handle both procurement and payment processes.
     
    1. Are there any built-in tools or reports within D365FO that can help in identifying and managing these conflicts? –
    • Segregation of Duties Rules: You can set up SoD rules in D365FO to separate tasks that must be performed by different users. Navigate to System administration > Security > Segregation of duties > Segregation of duties rules to create and manage these rules.
    • Conflict Resolution: Use the Identify and resolve conflicts feature to verify that existing roles and user assignments comply with SoD rules. This can be found under System administration > Security > Segregation of duties > Identify and resolve conflicts
     
    1. What are the best practices for customizing roles to ensure compliance with SoD principles without compromising functionality? –
    • Review and Define Duties: Carefully review the duties and privileges associated with each role. Define clear SoD rules to ensure that no single role has conflicting duties.
    • Regular Audits: Conduct regular audits of user roles and permissions to ensure ongoing compliance with SoD principles.
    • Documentation: Maintain thorough documentation of all role customizations and SoD rules to facilitate audits and reviews.
     
    1. Any recommendations for third-party solutions or tools that can assist with SoD analysis and conflict resolution in D365FO? –
    • Fastpath Assure: This tool provides comprehensive SoD analysis and conflict resolution capabilities, helping you manage and mitigate risks associated with user access.
    • Greenlight: Another solution that offers SoD analysis, access reviews, and audit reporting to ensure compliance with SoD principles.

    By leveraging these tools and best practices, you can effectively manage SoD conflicts and ensure compliance within your D365FO environment.
  • Suggested answer
    Arvind Bharti Profile Picture
    Arvind Bharti 686 Super User 2025 Season 2 on at
    Hi,
     
    Did you explore new user security governance feature by microsoft which is in public preview in 10.0 43 that has better capabilities

Under review

Thank you for your reply! To ensure a great experience for everyone, your content is awaiting approval by our Community Managers. Please check back later.

Helpful resources

Quick Links

Responsible AI policies

As AI tools become more common, we’re introducing a Responsible AI Use…

Neeraj Kumar – Community Spotlight

We are honored to recognize Neeraj Kumar as our Community Spotlight honoree for…

Congratulations to the November Top 10 Community Leaders!

These are the community rock stars!

Leaderboard > Finance | Project Operations, Human Resources, AX, GP, SL

#1
Martin Dráb Profile Picture

Martin Dráb 660 Most Valuable Professional

#2
André Arnaud de Calavon Profile Picture

André Arnaud de Cal... 549 Super User 2025 Season 2

#3
Sohaib Cheema Profile Picture

Sohaib Cheema 307 User Group Leader

Last 30 days Overall leaderboard

Featured topics

End-of-life Announcement for Microsoft Dynamics GP

Product updates

Dynamics 365 release plans