locked
What are the different kind of securities we have in CRM 2011? RRS feed

  • Question

  • Hi techies,

    Could any body explain me the kind of securities we have in CRM with examples.

    The reason behind this question is i am not bale to understand the Difference between role based and Object based security?

    Thanks in Advance


    Sreeni Pavalla

    Thursday, January 24, 2013 8:01 AM

Answers

  • Hi Pavalla,

    Understand in such a way 

    Role based security allows the user to access the CRM entities.For example a sales person can access Sales related entities.

    But Object based security further allows user to at which access level he can access the entity.An example may be that Sales person can have

    access to see his records not others records etc. 

    I believe now it give you some understanding.

    Regards,

    Yusuf


    If you find this post helpful then please "Vote as Helpful" and "Mark As Answer". Thanks and Regards, Mohammad Yusuf Ansari http://microxrm.blogspot.in

    Thursday, January 24, 2013 10:43 AM

All replies

  • Hi Pavalla,

    Here is an explanation

    Role-based Security vs Object-based Security


    Role-based security in Microsoft Dynamics CRM focuses on grouping a set of privileges together that describe the tasks that are performed for a user in a specific job function. The basic concepts of role-based security include the following:

    • Users are assigned one or more roles based on their job function or tasks
    • Roles are associated with permissions (privileges and access levels) for the different business objects (entities)
    • Users gain access to entities or groups of entities in the system via membership in a role that has been assigned the necessary privileges and access levels to perform the users’ jobs.

    Object-based security in Microsoft Dynamics CRM focuses on how users gain access to individual instances of business objects (entities).

    Role-based Security
    Role-based security in Microsoft Dynamics CRM is based on the interaction of privileges and access levels, which work together through the use of security roles.
    Privileges define what actions a user can perform on each entity in Microsoft Dynamics CRM. Privileges are pre-defined in Microsoft Dynamics CRM and cannot be changed; examples of privileges include Create, Read, Write, and Delete.
    Access levels indicate which records associated with each entity the user can perform actions upon.The access level associated with a privilege determines (for a given entity type) the levels within the organizational hierarchy (User, team and Business Unit) at which a user belonging to a specific role can act on that type of entity.
    Each security role provides a combination of privileges and access levels specific to a Microsoft Dynamics CRM job function.

    Object-based Security
    Object-based security applies to individual instances of entities and is provided by using access rights. An access right is granted to a user for a particular entity instance.
    The relationship between an access right and a privilege is that access rights apply only after privileges have taken effect. For example, if users do not have the privilege to read accounts, they will be unable to read any account, regardless of the access rights another user might grant them to a specific account through sharing.

    This is taken from here.

    Hope this helps,

    Regards,

    Yusuf


    If you find this post helpful then please "Vote as Helpful" and "Mark As Answer". Thanks and Regards, Mohammad Yusuf Ansari http://microxrm.blogspot.in

    Thursday, January 24, 2013 8:49 AM
  • Is there anyway that some one help me by explaining with examples?

    Sreeni Pavalla

    Thursday, January 24, 2013 9:24 AM
  • Hi Pavalla,

    Understand in such a way 

    Role based security allows the user to access the CRM entities.For example a sales person can access Sales related entities.

    But Object based security further allows user to at which access level he can access the entity.An example may be that Sales person can have

    access to see his records not others records etc. 

    I believe now it give you some understanding.

    Regards,

    Yusuf


    If you find this post helpful then please "Vote as Helpful" and "Mark As Answer". Thanks and Regards, Mohammad Yusuf Ansari http://microxrm.blogspot.in

    Thursday, January 24, 2013 10:43 AM
  • Hi Sreeni,

    Its simple, for the example take Account Entity.

    Role-based Security : It gives you the privileges to perform action like create/read/write/delete on account entity.

    Object-based Security : It gives you the access on which accounts you can perform action like create/read/write/delete on account. 


    Chandan - http://mscrm-chandan.blogspot.in/ I hope this helps. If my response answered your question, please mark the response as an answer and also vote as helpful !!!

    Thursday, January 24, 2013 11:39 AM
  • Hello,

    For role based security you can check this.

    For object based security , you can check this.


    Thanks and Regards. Make sure to "Vote as Helpful" and "Mark As Answer",if you get answer of your question.

    • Proposed as answer by CRM HUNT Friday, January 25, 2013 11:57 AM
    Thursday, January 24, 2013 11:52 AM
  • Hi,

    This may also help:

    http://quantusdynamics.blogspot.co.uk/2012/03/dynamics-crm-data-driven-security.html


    Visit my blog for CRM material, improving performance, kerberos, IFD, development tips, etc. :) http://quantusdynamics.blogspot.com

    • Proposed as answer by CRM HUNT Friday, January 25, 2013 11:57 AM
    Friday, January 25, 2013 9:06 AM