In most cases, the CRM security model prevents users from being able to do any action for which they do not have permission. For example, if a user does not have permission to view a record, they will never see it in a view, so will not be able to open it.
Similarly, if a user does not have permission to edit a record, then the record will be opened in read-only mode.
Therefore, there's not really a useful concept of a user trying to do something for which they don't have permission in CRM. If you use CRM OnPremise and enable
tracing , then you can get a list of all permissions that a user is not granted, but this will be an excessive amount of data, and is indicative of normal CRM activity, rather than a user deliberately
trying to do something they should not be permitted to do
Microsoft CRM MVP - http://mscrmuk.blogspot.com/ http://www.excitation.co.uk
