Tip #711: Record merge fails when assignee has insufficient privileges

Assignee has insufficient privileges

Guido “Trekkie not Star Wars fan” Preite is not the man to puzzle easily but even he was confused: Someone faced this error before? “Assignee has insufficient privileges” when merging two contacts. The User is System Administrator and the same user is the owner of both records. No plugins running on the merge message. CRM […]

Tip #702: How to tell apart system roles and their clones

Role play and theater masks

It’s been a while since we had a truckstop but Larry “Tex” Lentz keeps asking questions on behalf of some mysteryous “students”. Let’s stop and listen. How can one tell if a security role is a copy and which role it’s a copy of? Feridun “Best Twitter Handle for CRM MVP” Kadir closed the discussion […]

Tip #690: No field level security for alternate keys

Bunch of alternate keys

There were many people taking part in this discussion but I’m just going to take all the credit for providing the summary here. Contributors can claim the free drink from me when we meet.   If you are planning to use alternate keys to access CRM data, keep in mind that the fields with field […]

Tip #680: No more excuses for not using SSL

Connection privacy error

We all know about the goodness of SSL. CRM Online and On-premises IFD deployments won’t work without it. However, when it comes to creating and consuming web services, people become incredibly lax about using SSLs and happy to transmit even confidential information using plain http. Excuse is usually down the “who needs this information anyway” […]

Tip #652: Promote to admin explained

Promote to admin privilege

I’ve already seen some articles about “Promote To Admin” button, new in Microsoft Dynamics CRM 2016 Update 1, explaining in details how this button makes admin life easier by allowing quickly grant a user System Administrator role. All of the articles miss one important function that this button allows you to do. The functionality we’ve […]

Tip #526: Team is always more than sum of its parts

Another mini truck stop, this time to assist Dylan “Not a real Kiwi” Haskins preserve his sanity. tl;dr If a team has user-level privileges, members of that team will NOT have these privileges for the records owned by individuals and not the team. For example, if the team has a user-level create privilege then a […]

Tip #515: Why lookup control appears disabled

The other day the client asked us to verify the field level security settings on the system. The reason, as they explained it, was that one of the lookup controls appeared disabled and wouldn’t become enabled regardless of what they did to FLS settings. Long story short, the control was disabled not because of the […]

Tip #434: Recommended security for queues

CRM 2013 SP1 introduced private queues, but the private functionality only works correctly if your user security role permissions are set correctly. The recommended security role settings is: BU level read permission for queues Append To privileges for queues. If users still see other user’s queues or other queues that you don’t want them to,  then set all […]