Segregation of duties methodology

(0) Share

Report

Posted on by bankk

6,609

Hi all! Wondering if anyone might be willing to share the methodology they used in implementing segregation of duties within AX? I assume financial best practices would define what responsibilities need to be checked-and-balanced. How does the AX administrator figure out what duties map to each area of responsibility in defining the rules? Also, lets say we used the AX roles/duties/privileges out-of-the-box, shouldn't the segregation of duties rules already be defined (perhaps by MS)? The goal of this post is really to see if there's a common methodology used out there which we can follow. And if there are gotchas and pitfalls to keep an eye out for, I'd LOVE to know what they may be. Thanks in advance!!!

*This post is locked for comments

I have the same question (0)

All responses (3)

Answers (1)

Verified answer

André Arnaud de Cal... 301,148 Super User 2025 Season 2 on at

Like (0)

Report

Hi Kbanh,

The setup of the seggregation of duties is dependent on your company policy and perhaps requirements from EDP auditors. I think for this reason no standard setup is provided.

Until now I only got requirements about seggregation of the duties related to maintaining cutomer or vendor master data and the possibility of creating payment journals. Also posting ivoices and maintaining payments together was not allowed.

I agree that finding the correct duties is difficult. Namely for unexperienced people. A list of most used seggregation rules is welcome. That is my opinion. Financial rules are applicable for many companies.

It is possible to add privileges to roles in stead of duties. Sometimes I had to. But note that it is only possible to add rules on duties, not on privileges within the role. So best practice would be creating new duties in this case when you expect needing it within the seggregation of duties.

One suggestion for finding the duties used is to use the Security Development Tool (available on informationsource). On a menu item you can then discover the duties where it is used. This is easier than navigating within the AOT.

Was this reply helpful? Yes No
bankk 6,609 on at

Like (0)

Report

Thank you for your feedback on segregation of duties and suggestion regarding the use of the SDT. Even if there are no specific methodology to this work, I would imagine there'd be some general steps to determine at least the high-level financial guidelines.

This work is certain in preparation for a financial audit, and as such, I think the rules would be published either internally or through a larger governing body (e.g., SOX). I guess a possible next step is Finance to see if there are published company financial guidelines.

Thank you once again Andre.

Was this reply helpful? Yes No
Community member 85 on at

Like (0)

Report

It is now 5 years later than the original post and I am wondering the same thing. Seems like there would be some "Common" rules, but I can only find this post informing me to talk to Finance about their rules. Does anyone one else have anything to add on this topic?

Was this reply helpful? Yes No

Community site session details

Segregation of duties methodology

Helpful resources

Quick Links

Responsible AI policies

Neeraj Kumar – Community Spotlight

Congratulations to the November Top 10 Community Leaders!

Leaderboard > 🔒一 Microsoft Dynamics AX (Archived)

Featured topics

Product updates

Community site session details

Segregation of duties methodology

Helpful resources

Quick Links

Responsible AI policies

Neeraj Kumar – Community Spotlight

Congratulations to the November Top 10 Community Leaders!

Subscribe to this forum!

Select categories

Leaderboard > 🔒一 Microsoft Dynamics AX (Archived)

Featured topics

Product updates