Security Roles
Security roles in Microsoft Dynamics CRM are a matrix of privileges and access levels for the various entities. They are grouped under different tabs based on their functionality. These groups include: Core Records, Marketing, Sales, Service, Business Management, Service Management, Customization and Custom Entities.
Privileges:Privileges are the basic security units that delineate what action a user can perform on the CRM system. These cannot be added or deleted but only modified. The common privileges in Microsoft Dynamics CRM for each entity are as follows:
- Create — Allows the user to add a new record
- Read — Allows the user to view a record
- Write — Allows the user to edit a record
- Delete — Allows the user to delete a record
- Append — Allows the user to attach other entities to, or associate other entities with a parent record
- Append to — Allows the user to attach other entities to, or associate other entities with the record
The bottom level lists miscellaneous privileges such as viewing audit history/summary, bulk delete, publish e-mail templates/reports/articles and so on.
Levels of AccessThis is indicated by the degree of fill and color of the little circles against each entity for each privilege. These levels determine the records of an entity upon which the user can perform a given privilege. The 5 levels of access are as follows:
- None — No privileges given
- User — Privileges to the records owned by the user or shared with the user. Also includes the privileges owned by the team to which the user belongs.
- Business Unit — Privileges for all records owned in the business unit to which the user belongs
- Parent: Child Business Unit — Privileges for all records owned in the business unit to which the user belongs and to all the child business units subordinate to that business unit
- Organization — Privileges for all records in the organization regardless of who owns it.
