Tip #1067: When two groups say “We want to hide our stuff but see everyone else’s”

Generally my policy is unless there is a REALLY good reason, all data in CRM should be shared. However, on rare occasion, there is a REALLY good reason. When you have one special group who want to hide their, say, Activities from everyone else, a well-placed Business Unit will do the job (either have one […]

Tip #900: Check custom roles if users can’t see the app

Role play and theater masks

This tip is from Rocky “Road” Sharma. What if you watched the video on App Designer, applied custom security roles to your app and now your users can’t see the App? If you are using custom security roles and create Dynamics 365 Apps for teams/departments in your organisation, the app may not appear in the […]

Tip #761: Script error in main.aspx on line 1

Fragile

When creating fine-tuned roles for restricted access to your Dynamics CRM deployment, be very careful about privileges granted on Customization tab in role editor. Some of the privileges are easy to overlook and, if not granted, that can break the user experience. What I learned today is that CRM is very sensitive about Process privileges. […]

Tip #702: How to tell apart system roles and their clones

Role play and theater masks

It’s been a while since we had a truckstop but Larry “Tex” Lentz keeps asking questions on behalf of some mysteryous “students”. Let’s stop and listen. How can one tell if a security role is a copy and which role it’s a copy of? Feridun “Best Twitter Handle for CRM MVP” Kadir closed the discussion […]

Tip #434: Recommended security for queues

CRM 2013 SP1 introduced private queues, but the private functionality only works correctly if your user security role permissions are set correctly. The recommended security role settings is: BU level read permission for queues Append To privileges for queues. If users still see other user’s queues or other queues that you don’t want them to,  then set all […]

Tip #410: How to create non-interactive user while saving foot from injury

Non-interactive users (available in CRM Online only) are defined as the users that “… can access the system but only through the Web service”. That makes them perfect for use as integration accounts. That and a small fact that they do not consume a CRM license (in quantities five or less). To create non-interactive user […]

Tip #213: Add a subgrid of related security roles to the user or team form

In a comment on Tip 211: When upgrading, don’t forget the team form, Pebo asked “what about the possibility for showing roles in subgrids of teams and user forms?” This is a great question, and we have an answer. First, you need to understand security roles in Dynamics CRM. There is not just one record for […]

Tip #97: CRM Administrators Don’t Take this Shortcut

CRM System Admin

Okay, I understand, we are all busy and have more to do than time to do it. As CRM Administrators we can often spend most of our day reacting to requests with little time to actually plan our response. Here is the typical scenario – The marketing manager calls you and lets you know that […]

Tip #80: Auditing for all Critical Records

CRM Auditing

Maybe you don’t want to turn auditing on because you think you don’t need it or are concerned about the additional storage space it will consume. But enabling auditing is a CRM Administrator’s best friend when it comes to understanding the consequences of the assigned security roles. So at the minimum be sure to enable […]