So you want to give users who are not system administrators the ability to manage roles for other users, but you don’t want to give them the ability to elevate their own roles? How do you allow users to manage other users’ roles without promoting themselves to system administrator? In the role for the user […]
Tip #941: Limit who can change the stage of a process flow
A client recently asked me about the ability to limit who can move an opportunity out of the “propose” stage. They would like to only allow sales managers to move to the next stage of the business process flow. Knowing that Dynamics 365 does not limit stage movement by role, I reached out to some […]
Tip #901: Restricting access to your instance revisited
We’ve been hosting Dynamics CRM/365 instances for our customers since CRM 4 days but lately they have been moving to Dynamics 365 Online in drones (awesome – now I can sleep at night!). Some have been hesitant because we were using geo-restrictions for their instances (implemented in a supported way). Digging into why it was […]
Tip #900: Check custom roles if users can’t see the app
This tip is from Rocky “Road” Sharma. What if you watched the video on App Designer, applied custom security roles to your app and now your users can’t see the App? If you are using custom security roles and create Dynamics 365 Apps for teams/departments in your organisation, the app may not appear in the […]
Tip #866: Invite others into your Dynamics 365 instance
Gone are the days when every tenant was sitting in their own little room with multiple instances being the best offer we could hope for. With Azure AD B2B generally available (yay!) we can now all invite Damian “Unleashed” Sinay to poke around our Dynamics 365 instances. Why Damian? Because he was the one asking […]
Tip #846: Duplicate security roles in Dynamics 365
In Dynamics 365 Customer Engagement(8.2), if you change a Business Unit’s parent BU, custom security roles in the Business Unit may be duplicated. If you then change the parent BU a second time, a third copy of the roles will be created. This is a known issue. If it happens to you, open a ticket […]
Tip #842: Strange security results? Check teams
I created two dashboards and assigned each one to a different security role. However, users without the roles assigned to the dashboards are seeing both dashboards. What’s going on? Whenever I come across an unexplainable security test result in Dynamics 365, the first thing I do is check the teams assigned to the users in […]
Tip #774: Hierarchy Security and Personal Views
If you use hierarchy security, you should be aware that it will grant visibility to user’s personal views to their managers (or superior positions). This means that a manager may have many more personal views show in his or her view list, and users should be advised not to create views with names like “Accounts my […]
Tip #769: Careful who you use as certificate authority
Sometimes we need to call web services from a plugin or a custom workflow activity. For CRM Online it means calling it from the sandbox and there are certain restrictions that apply to the network access. These restrictions are clear and well understood, however, if you call service over https protocol, one addition restriction applies: […]
Tip #767: Server-to-server authentication is here
Woot, woot! At long last we can create passive clients – the ones that do not have someone sitting in front of them. Clients like web sites or services – and authenticate them without using username and password AND get the magic bearer token that is good to use in Web API. The detailed walkthrough […]