Security 101 in Dynamics AX 2012

By Catherine Thole | February 28, 2013

Security 101 in dynamics ax 2012

Security was a topic that I became well versed in during my years on the Microsoft Dynamics AX support team and as a Partner Technical Consultant for Dynamics AX.  Therefore, I wanted to do a series of blog articles covering some things that I have learned.  I decided to start by covering the basics of security in Dynamics AX 2012.

Security was completely re-designed in Dynamics AX 2012.  This resulted in some benefits such as having out of the box roles to assign users to, but it meant that there was a learning curve to setup security.  Another large change to security in Dynamics AX 2012 was the development aspect that was added.  While you can maintain security and do some setup of security in the Dynamics AX client, most of the work to create security objects is done in the AOT.  So let us look at the nodes under Security in the AOT.

Security Node in AOT

 

Roles – These are the security roles that you create to assign to users.  These are typically going to be created around jobs/positions that exist within the organization.  An example of this is the Accounts Payable clerk role.

Duties – I like to think of duties as tasks, specifically the tasks that you would need to do as part of your job/position which are considered roles in Dynamics AX.  An example of this would be ‘Maintain vendor invoices’ which is assigned to the Accounts Payable Clerk role.

Privileges – These are the specific forms, reports, etc that a user needs to perform a task and the level of access that is required.  Permissions are made up of entry points and the level of access.  Entry points are menu items (forms, reports, actions), web, services.  An example would be the ‘VendTransMaintain’ privilege that is part of the ‘Maintain vendor invoices’ duty.

Code Permissions – These are used when you have a menu item that is running a method of a class.  Code Permissions allow you to specify access levels to forms, tables, web controls, and reports that are related.  On example of this would be the VendEditInvoice code permission which deals with the executeTransfer method of the subledgerJournalTransferOperation class.  It also involves permissions to the VendEditInvoice form.

Process Cycles – These are used to group duties together so that it is easier to find them when searching in the Dynamics AX client to create or modify a role.  For example, let’s say you are trying to add the Approve Vendor Invoices duty to the Accounts Payable Clerk role. It is easy to use process cycles because the find feature is available, as opposed to if you try to use the Duty/privilege view by option as the find is greyed out.

Policies – These are used to restrict what data a user is able to see in a form or report.  This is the new method in Dynamics AX 2012 to limit data similar to what you have with record level security.  With this feature you create a query with restrictions.  Then, you create a security policy that can be applied to a security role.  For example, if you wanted to limit your account payable clerks from seeing retail vendors, you could create a query on the vendor group table with a range that limits the retail vendors.  You would then create a policy that includes this query and security role.

Now that you have a brief explanation of the security nodes in the AOT you are ready for my next blog articles that cover how to remove a field from a form for certain users.

Related Posts

Recommended Reading:

Managing Your Business Through Uncertain Times Using Dynamics 365 Finance and Operations

  Dynamics 365 Finance and Operations (F&O) can help you make informed decisions on how to move your business forward. […]

Read the Article
5.13.22 Power Platform

Using Power BI Object Level Security

  The following article will demonstrate how to use Power BI Object Level Security to disable column data based on […]

Read the Article
5.12.22 Dynamics CRM

How to Use the Stoneridge Support Portal

Stoneridge Software’s support portal is an intuitive and useful function that makes it easy for you to access resources to […]

Read the Article
5.6.22 Dynamics GP

Dynamics GP Transaction Removal: Purchase Orders

  Are you having performance issues with Purchase Orders?  Do you find that there are old Purchase Orders on your […]

Read the Article
5.5.22 Dynamics GP

The Real Story about the Long-Term Future of Dynamics GP Support

I’ve seen a number of people put forward comment that Dynamics GP is going away and you have to get […]

Read the Article

New Features in Dynamics 365 Business Central 2022 Wave 1 Release – Financial Enhancements

The Dynamics 365 Businses Central 2022 Wave 1 Release has a lot of new and exciting features to help your […]

Read the Article
4.29.22 Dynamics GP

Dynamics GP Transaction Removals: Bank Reconciliation

  This is part 2 of a 3 part series on Dynamics GP Transaction Removals. These quick tips will hopefully […]

Read the Article
4.28.22 Dynamics GP

Uncommonly Used Features – Integrate Purchasing and Payables to Fixed Assets in Dynamics GP

Being able to integrate Purchasing and Payables to Fixed Assets in Dynamics GP will help you create visibility for your […]

Read the Article

New Features in the Dynamics 365 Business Central 2022 Wave 1 Release – Ease-of-Use Features

  There are many new features in the Dynamics 365 Business Central 2022 Wave 1 Release to get excited about! […]

Read the Article

Start the Conversation

It’s our mission to help clients win. We’d love to talk to you about the right business solutions to help you achieve your goals.

Subscribe To Our Blog

Sign up to get periodic updates on the latest posts.

Thank you for subscribing!

X