We are using D365 F&O infrastructure merge version 10.0.26 and as per the business requirement, HR Manager role should have access to the delete button in the certificates. How to disable the delete field for other roles globally.
Hi Dreambig,
The deny permissions will have the highest priority. For that reason, depending on the security configuration and implementation, it can have the impact that all roles are affected. As mentioned above and by Nikolaj, ensure the HR manager will not be impacted by any change.
For that reason, I suggested one option to have a new role for the deny permissions which will then not be assigned to persons who should have access.
If you change the access to the field on the privilegie, then all duties and roles using that privilege/duty will be affected by your change.
I do not know if you are using the standard roles, but if you do, then you should follow André's guidance:
"If you need to use standard roles and exclude delete permissions, you can create new security objects where you set deny permissions for delete actions on the menu item or table(s) used on this form. If you create a new role for the deny permissions, you can use automatic role assignment to assign this role to all users, except those who have the HR Manager role."
So create a new security role and set the deny access on that role. This role can then be automatically be assigned to all users, except the ones assigned to the "HR Manager" role.
Thanks Andre for the prompt reply.
I do not want to make any changes on the standard roles. So, I have duplicated the standard role and renamed it. However, when I set the delete field to "Deny" it applies to all the roles including standard roles.
Hi Dreambig,
You can disable delete permissions with help of security settings. Ensure that only the HR Manager role would have full permissions (Maintain) access. All other roles should get read or update permissions via privileges, duties and the role.
If you need to use standard roles and exclude delete permissions, you can create new security objects where you set deny permissions for delete actions on the menu item or table(s) used on this form. If you create a new role for the deny permissions, you can use automatic role assignment to assign this role to all users, except those who have the HR Manager role.
Stay up to date on forum activity by subscribing. You can also customize your in-app and email Notification settings across all subscriptions.
André Arnaud de Cal... 291,151 Super User 2024 Season 2
Martin Dráb 229,963 Most Valuable Professional
nmaenpaa 101,156