OData Security - D365FO

(0) Share

Report

Posted on by SNAFU

Have been working with and supporting Dynamics 365FO for over 2 years. Is there any way of securing Odata access as users seem to be able to access with there standard login credetials for the application and can pull any data they want from the system and even do cross-company.

We have some applications that connect and need this access but dont want any user access other companies data but there doesnt seem to be an easy way to restrict this?

Has anyone else had this issue, seems like a big issue in regards to security and data being lost/misuesed.

I have the same question (0)

All responses (5)

Answers (1)

Suggested answer

nmaenpaa 101,160 Moderator on at

Like (0)

Report

RE: OData Security - D365FO

Users can only read data that their user role grants. So it's just as secure and manageable as accessing data via the user interface.

You can grant roles per company, too.

Was this reply helpful? Yes No
Suggested answer

nmaenpaa 101,160 Moderator on at

Like (0)

Report

RE: OData Security - D365FO

Also, data entities are covered by their own security privileges so you have very good control over the access (you can grant read or write access per entity).

Was this reply helpful? Yes No
SNAFU 5 on at

Like (0)

Report

RE: OData Security - D365FO

Thanks Nikolaos,

We are using mostly the standard roles for our users, what security privalidges need to be assigned or removed from them to stop them accessing Odata.

Is there any microsoft documentation on this?

Was this reply helpful? Yes No
Suggested answer

nmaenpaa 101,160 Moderator on at

Like (0)

Report

RE: OData Security - D365FO

First of all, please think your requirement one more time. If you allow the user to access some information via D365 user interface, why not allow them to access it with Excel or Power BI (OData)? What is the risk you see here?

You can't use the standard roles in this case, you need to create your own. There's no detailed documentation but let your developer use cross references in Visual Studio to find which privileges are related to the entities.

Was this reply helpful? Yes No
Verified answer

André Arnaud de Cal... 299,407 Super User 2025 Season 2 on at

Like (0)

Report

RE: OData Security - D365FO

Hi Snafu,

Nikolaos is correct that entities are linked on a privilege like menu items. Usually, Microsoft did create new separate privileges, but you can also have privileges with both menu items and the data entities. In fact the documentation is in the system. You can use cross references and meta data search in Visual Studio, but if there are security objects changed using configuration, this is not visible in Visual Studio.

Was this reply helpful? Yes No

Join the conversation

Community site session details

OData Security - D365FO

Helpful resources

News and Announcements

Quick Links

Responsible AI policies

Abhilash Warrier – Community Spotlight

Congratulations to the September Top 10 Community Leaders!

Leaderboard > Finance | Project Operations, Human Resources, AX, GP, SL

Featured topics

Product updates

Community site session details

OData Security - D365FO

Helpful resources

News and Announcements

Quick Links

Responsible AI policies

Abhilash Warrier – Community Spotlight

Congratulations to the September Top 10 Community Leaders!

Subscribe to this forum!

Select categories

Leaderboard > Finance | Project Operations, Human Resources, AX, GP, SL

Featured topics

Product updates