cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Reply
dave8
Post Prodigy
Post Prodigy

How to configure unique permission at entity level without impacting other entities?

‎06-12-2020 03:09 AM

Hello,

 

I have an entity called "Products" that needs unique permission for that specific entity ONLY without impacting access level of other entities.

 

Should I create new security role and update access level of all entities including "Products" entity? Or I should update the existing role ( CDS User) by updating access level of only "Products" Entity? OR there is some other way?

 

Would you please clarify the best practice/approach here?

 

Thanks and Regards,

Message 1 of 3
83 Views
0 Kudos
2 ACCEPTED SOLUTIONS

Accepted Solutions
EricRegnier
Super User II
Super User II

‎06-14-2020 07:12 PM

Hi @dave8,

I usually leave the out-of-the-box (OOB) roles intact and create custom roles based on them. So I create a custom role by copying an OOB role and then make the necessary changes. Also inline with this tip: https://crmtipoftheday.com/1297/base-your-base-role-on-the-cds-user-role/

Hope this helps!

View solution in original post

Message 2 of 3
53 Views
0 Kudos
jlindstrom
Super User
Super User
In response to EricRegnier

‎06-15-2020 03:56 AM

Besides what I said in the tip of the day, I would look at the scope of this requirement--does it apply the same way to all users or is it different for different types of users? For example, do you have three groups that need three different levels of permissions for products? 

 

Put the minimum permission for product in the base role that all users get, then create additional roles for each other persona with different level of product access.

 

Put as much as you can in the base role, then the other roles should only contain the delta (what is different).

Remember that CDS roles are cumulative, so if you give them the base role and another role with higher permissions for products, then they get the combination of the two.

View solution in original post

Message 3 of 3
46 Views
2 REPLIES 2
EricRegnier
Super User II
Super User II

‎06-14-2020 07:12 PM

Hi @dave8,

I usually leave the out-of-the-box (OOB) roles intact and create custom roles based on them. So I create a custom role by copying an OOB role and then make the necessary changes. Also inline with this tip: https://crmtipoftheday.com/1297/base-your-base-role-on-the-cds-user-role/

Hope this helps!

View solution in original post

Message 2 of 3
54 Views
0 Kudos
jlindstrom
Super User
Super User
In response to EricRegnier

‎06-15-2020 03:56 AM

Besides what I said in the tip of the day, I would look at the scope of this requirement--does it apply the same way to all users or is it different for different types of users? For example, do you have three groups that need three different levels of permissions for products? 

 

Put the minimum permission for product in the base role that all users get, then create additional roles for each other persona with different level of product access.

 

Put as much as you can in the base role, then the other roles should only contain the delta (what is different).

Remember that CDS roles are cumulative, so if you give them the base role and another role with higher permissions for products, then they get the combination of the two.

View solution in original post

Message 3 of 3
47 Views

Helpful resources

Announcements
New Badges

New Solution Badges!

Check out our new profile badges recognizing authored solutions!

New Power Super Users

Congratulations!

We are excited to announce the Power Apps Super Users!

Power Apps Community Call

Power Apps Community Call: February

Did you miss the call? Check out the Power Apps Community Call here.

Microsoft Ignite

Microsoft Ignite

Join digitally, March 2–4, 2021 to explore new tech that's ready to implement. Experience the keynote in mixed reality through AltspaceVR!

View All
Users online (32,423)