Friday, April 1, 2022

Admin Privileges in Business Central/NAV, but not really!

Hello All, 

Permissions and User Licenses are one of the key things in ERP which defined proper Roles so that Business Processes run smoothly. 

But apart from that, it is also important to assign the right User group to access ERP. What about the external Users like Data Analysis who want to build reports or Auditors? These users do not really use the system for daily Business or processes, but need access to View All Modules and to check all tables and fields so that they can retrieve the right data. 

Now you will tell me, just assign them ADMIN(READ) User group. But what about the cost? It costs more and we would all give unrequired Permissions like Insert, Modify and Delete which would give them access to everything within ERP. Risky business, isn't it?

As a solution, follow these steps:

Create a User Group as ADMIN(READ) and add the following Permission Sets:

1. Create a User-defined Permission Set as SUPER(READ) and add these Permissions:

Table Data = Read -Yes, Insert - Indirect, Modify - Indirect

All other Objects = Execute - Yes

(The difference between Table and Table Data is a topic for another blog :D)

2. TROUBLESHOOTING TOOLS (System Defined)

3. SYSTEM APP -BASIC (System Defined)

So go ahead and save your Licenses and unnecessary rights ;)

Please give your valuable feedback on what you think about this?

Also, Check out other blogs, if you haven't already. 


Kindly suggest what else do you want me to blog about. Keep following and supporting!

You can also email me at jyotsnaoberainav@gmail.com

Also, visit my website JONAV if you are looking for NAV/D365BC Training and/or Services!

Thank you! 

No comments:

Post a Comment