Personalized Community is here!
Quickly customize your community to find the content you seek.
Choose your path Increase your proficiency with the Dynamics 365 applications that you already use and learn more about the apps that interest you. Up your game with a learning path tailored to today's Dynamics 365 masterminds and designed to prepare you for industry-recognized Microsoft certifications.
Visit Microsoft Learn
2020 Release Wave 2Discover the latest updates and new features to Dynamics 365 planned through March 2021.
Release overview guides and videos Release Plan | Preview 2020 Release Wave 2 TimelineWatch the 2020 Release Wave 2 virtual launch event
Ace your Dynamics 365 deployment with packaged services delivered by expert consultants. | Explore service offerings
Connect with the ISV success team on the latest roadmap, developer tool for AppSource certification, and ISV community engagements | ISV self-service portal
The FastTrack program is designed to help you accelerate your Dynamics 365 deployment with confidence.
FastTrack Program | Finance TechTalks | Customer Engagement TechTalks | Upcoming TechTalks
Thanks to some comments by a Fastpath user we identified A small security hole in Microsoft Dynamics GP (and a fix).
Follow the link for details on MSDynamicsWorld.
Why is this a “small” hole?
Primarily because it affects existing users, and only users with access to create GP users. Essentially the Copy Settings functionality available when creating users doesn’t respect security access rights to modify user permissions. If someone is allowed to create GP users, but NOT change permissions, this bug gives them a workaround. They could elevate a user or grant access to other companies by copying access from an existing user.
Be sure to check out the article for a fix.
Is Microsoft going to fix this?
I ran the problem and a recommended workaround as a fix by the GP team. They agreed that GP works as I’ve described and that the fix described will work. My sense is that they don’t plan to fix this…unless of course there is significant interest from the community on getting it fixed.
The post A small security hole in Microsoft Dynamics GP (and a fix) appeared first on DynamicAccounting.net.
Business Applications communities