We talk about security around Dataverse and Power Platform from time to time. We even dabble into platform agnostic security tips. Today is all about vendor-agnostic cybersecurity. Learn the fundamentals of identity management, zero trust, AppSec, and data security in this new 7-lesson open source course, “Security for Beginners” created by Microsoft Cloud Advocates. Each […]
Liquid is a great templating language adding flexibility to your Dynamics 365 Portal templates. However, as any abstraction, it hides some of the things happening under the hood, including some security filtering. Consider this fragment running on authenticated page: And… the count is 2 while expected to be the total number of contacts in this […]
Almost two years ago I wrote on the merits of using Teams vs Queues for managing Cases. While I stand behind what I wrote (Teams are simpler but Queues are more powerful) another element raised its head recently which is worthy of consideration if you are going down the path of setting up Case management. […]
As discussed in 917, moving Users between Business Units can be difficult and, as Joel suggested in 935, a good option when setting up a new system is to add a child Business Unit from the outset and add all the Users there. In a recent implementation I did not do this (in my defence, […]
Way back in Tip 226, we talked about the sitemap privilege tag that can be used to hide sitemap subarea links for users that don’t have a specific entity permission. One thing that you should know is that the privilege tag is not honored by Dynamics CRM mobile apps. The rule of thumb is that […]
After you CRM 2015 upgrade, the users, teams, and roles should now appear in the Settings area under “Security Management.” However, what should you do if the new security management section is missing? Create a solution containing your sitemap and export it out. Edit the sitemap and add the following subarea to the settings area: […]
If you frequently modify security role and your wrist hurts because of all tiny mouse movements, there are some undocumented explicit links on the role dialog that could make your life much easier. Clicking on the entity name (e.g. Account) will cycle all privileges for this entity (i.e. Create, Read, etc) through all access levels […]
Usability of 1:1 relationships stretches far beyond UI candy. They can become a very useful tool that secures parts of the same logical record. For example, financial services company might use account entity to hold information about their customers but due to Chinese walls within the company, investment manager should not be able to access […]
The CEO Business Manager security role in the CRM has broad rights, almost as much as the System Administrator Role. No matter how forcefully you are told, don’t give this role to the owner of the business who is probably also paying the bills. Why? Because most likely, this person is the one that was […]
Executing real-time workflows has it’s own security setting. It is in addition to and separate from executing a background workflow. Open up the security role, move the Customization tab, scroll down to Miscellaneous Privileges and assign the appropriate scope.
of the