web
You’re offline. This is a read only version of the page.
close
Skip to main content

Notifications

Announcements

No record found.

News and Announcements icon
Community site session details

Community site session details

Session Id :
Dynamics 365 Community / Forums / Finance | Project Operations, Human Resources, ... / Security role testing
Finance | Project Operations, Human Resources, ...
Suggested Answer

Security role testing

(0) ShareShare
ReportReport
Posted on by VoltesDev

Hi guys,

I'm new to D365 F&O implementation, currently we are on Security access discussion which I need some advice from the expert here which is more experience than me.

So when user already give their "expected" Role with all the privileges and permission, I am wondering what is the correct approach to test this roles ? as an implementer, we created those role with the required / appropriate privileges and is it common practice that we also adopt what already exist in F&O in standard Duty and privileges if possible ? But this also mean some privilege may not necessary to user, eventually will not as exact same as what in their list. 

Mean to say, I am asking what is the correct approach to test and to prove that this security has been implemented correctly ? And apart of we tested all those roles that we are created, will it be best that user it self test the role. Further more in most implementation we have UAT session, is the UAT session is the right moment that user should test the role ?

I'm asking this because there is couple of time, obviously with "difficult user", as they think they already give the list of roles with what they need (sometime can be from previous AX), so they will refuse to test and give it back to us as implementer saying we;re the one need to test those role and make sure there is no wrong or cannot access later when they went Live.

Hope some one can share how this security being implemented.

thanks in advance,

I have the same question (0)
  • Suggested answer
    GirishS Profile Picture
    GirishS 27,827 Moderator on at

    Hi VoltesDev,

    What I understood from your question is you are asking how to test the security role.

    You need to have 2 users to test the security roles. One with system admin roles and other user with the list of roles to test.

    Another option is using DevTool - Refer to the below blog post. I never implemented this, but you can give it a try.

    https://alexdmeyer.com/2017/08/29/how-to-simulate-the-security-development-tool-in-dynamics-365fo-view-with-role-set/

    Thanks,

    Girish S.

  • Suggested answer
    Mohit Rampal Profile Picture
    Mohit Rampal 12,565 Moderator on at

    Hi VoltesDev, Generally implementation partners test the security first to ensure that a role is able to perform the relevant activities with all required access but more importantly, Role does not have extra access in the system.  After implementation partner tested the security, User should test it to ensure everything is working. At least, that's what I have observed in multiple projects.

    Ultimately, its users responsibility to give you a sign-off on Security Testing.  

  • VoltesDev Profile Picture
    VoltesDev on at

    Thank you both.

    Btw, would like to ask something about the blog that shared by Girish, I cannot find the DevTool as I tried to search my folders in my DevBox for "DevToolsService".

    Since the blog also from 2017, could it be change for nowadays ?

    Thanks,

  • GirishS Profile Picture
    GirishS 27,827 Moderator on at

    Its available in azure server under E drive.

    It's not available in on prem server. I tried to copy that file from azure to on prem server but its throwing error on the user role assignment.

    Thanks,

    Girish S.

  • Suggested answer
    Mohit Rampal Profile Picture
    Mohit Rampal 12,565 Moderator on at

    You might be interested in this video & solution in GitHub for Security Test Workspace tool 

    www.youtube.com/watch

    github.com/.../D365FOSecurityTestWorkspace

  • André Arnaud de Calavon Profile Picture
    André Arnaud de Cal... 300,915 Super User 2025 Season 2 on at

    Hi VoltesDev,

    Mohit provided the correct answer. A partner can help defining the roles, but the organization is responsible for the security testing and more important: the sign-off. Despite organizations did use another AX solution in the past, they still need to perform the testing as the solutions and the security are not the same. The contents of the older AX solution could be a perfect start for a partner to configure or develop the security roles. Then still, there might be new features implemented compared to older AX apps.

Under review

Thank you for your reply! To ensure a great experience for everyone, your content is awaiting approval by our Community Managers. Please check back later.

Helpful resources

Quick Links

Responsible AI policies

As AI tools become more common, we’re introducing a Responsible AI Use…

Neeraj Kumar – Community Spotlight

We are honored to recognize Neeraj Kumar as our Community Spotlight honoree for…

Congratulations to the November Top 10 Community Leaders!

These are the community rock stars!

Leaderboard > Finance | Project Operations, Human Resources, AX, GP, SL

#1
Martin Dráb Profile Picture

Martin Dráb 664 Most Valuable Professional

#2
André Arnaud de Calavon Profile Picture

André Arnaud de Cal... 522 Super User 2025 Season 2

#3
Sohaib Cheema Profile Picture

Sohaib Cheema 303 User Group Leader

Last 30 days Overall leaderboard

Featured topics

End-of-life Announcement for Microsoft Dynamics GP

Product updates

Dynamics 365 release plans