Team based Security in Microsoft Dynamics 365 CE : Access Team (Part 3)

Certainly, role-based security provides a great security model and the owner team is a another powerful security component in this series. In Dynamics CRM 2013, Microsoft introduced a new security team called the Access Team. This new security team has not been additionally added while it complements the CRM security model. due to scarcity of knowledge, CRM professionals do not use properly. this is my small endeavor to collect entire information and trying to explain this security component in the my words.

In a statement definition:

Access teams provide an alternative way of  share business objects and collaborate with users across business units, security roles, or teams without the need to modify or update the basic security model in CRM.

As the Microsoft white paper on Access Team:



When to use Access Teams:

  • Teams are dynamically formed and dissolved. This typically occurs when explicit criteria for defining teams, such as established territories, products, or quantities, are not provided.
  • The number of teams at the design time of your Dynamics 365 for Customer Engagement system is not known.
  • Team members are required to have separate access rights on record. You can share a record with multiple access teams, with each team granting different access rights to the record. For example, one team is given the right to read directly on the account and the other team is given the right to read, write and share on the same account.
  • A unique group of users requires access to a single record without owning the record.

Advantages of Access Teams:

  • Access Team life cycle is automatically managed by the system.
  • User can create custom permission set and re-use it.
  • Grant different access rights to multiple teams for the same record.
There are two type of Access Teams:
  1. User-created access team : Multiple records have to be shared with an Access Team with different access rights. 
  2. Auto-created (system-managed) access team: each record has to be shared with a unique set of Access Team but with the same access rights

Access Team can create automatically and manually:

1. Manually : can be created manually through the teams user interface.




2. Automatically: there are few steps to perform:

1. Enable the entity for access teams

2. Set up an access team template




3. Add a subgrid to the entity form to view the team members



4. Add members to the subgrid



When access teams are enabled for an entity, the lifecycle of the team is managed automatically. 



Viewing the Access Teams: 

In normal operation, an automatically created access team, system generated, is hidden from use because it is Managed behind the scenes by a Microsoft Dynamics CRM application rather than requiring a manual Administration.

In order to view system generated teams, as these are deliberately withheld from standard views, you can use advanced find to query for teams of type ”Access” and that are ”Is System Managed” as shown here



Conclusion:

Access Team provides  alternative way of  mechanism for share and collaborate the business objects with each user in the granular level. Whereas, Owner Team is static, it is dynamically created and dissolved. With the help of Access Team, we can manage the large level of team with different permission set.

Please refer Team based Security in Microsoft Dynamics 365 CE : Owner Team (Part 2) 

Comments

  1. Nanfor Ibérica11 June 2021 at 09:13

    La sugerencia impresionante y poderosa del autor de este blog es realmente útil para mí.
    Microsoft Certified: Power Apps + Dynamics 365 Developer Associate

    ReplyDelete
  2. Nanfor Ibérica1 November 2022 at 14:13

    Thank you very much for sharing such a useful article. Will definitely saved and revisit your site best MB-400: Microsoft Power Apps + Dynamics 365 Developer

    ReplyDelete

Post a Comment

Popular posts from this blog

PCF vs. Web Resources: Choosing the Right Extensibility Tool for Dataverse

Image
Extensibility refers to the ability to be extended or augmented beyond the default capabilities of the platform. This involves customization but also includes more advanced techniques, such as coding, integration with external services, and the use of custom components. In the context of Power Platform and Dynamics CRM, the term "extend behavior" refers to the ability to customize and extend the functionality of the platform to meet specific business needs. Extensibility often requires technical skills, such as coding in JavaScript, C#, or using tools like Azure Logic Apps and Power Automate for complex integrations. Customization  is a subset of extensibility. Customization involves configuring and modifying existing elements within the platform to suit specific business needs. Extensibility, on the other hand, covers a wide range of functions and techniques, including customization and more advanced development and integration tasks, to extend the capabilities of the Power
Read more

Is Debt Prosperity or Trap?

 “What can be added to the happiness of a man who is in health, out of debt, and has a clear conscience?”  Adam Smith Grandfather Bhishma lay on the bed of arrows and was preaching the future king of Hastinapur about political science, economics and the duties of the king. He took a deep breath and told Yudhishthira " Fire, debt and enemies must be dealt with quickly and completely. If there is any balance left, they can continue to grow. " The future king was listening with curiosity and was eager to learn about the complete knowledge from his grandsire. Each moment was important as the sun was moving from south to north. Either we read the quote of the father of modern economics or both ancient great scholars are advising to avoid debt. But the whole of modern economics is based on the debt that advises the public to borrow money. The aggressive campaign of banks and financial institutions has been luring more and more loans. Even democratic governments and public banks con
Read more

Exam PL-400: Microsoft Power Platform Developer

 Create a technical design (10-15%) Validate requirements and design technical architecture design and validate the technical architecture for a solution design authentication and authorization strategy determine whether you can meet requirements with out-of-the-box functionality determine when to use Logic Apps versus Power Automate flows determine when to use serverless computing, plug-ins, or Power Automate determine when to build a virtual entity data source provider and when to use connectors Design solution components design a data model design Power Apps reusable components design custom connectors design server-side components Describe Microsoft Power Platform extensibility points describe Power Virtual Agents extensibility points including Bot Framework skills and Power Automate flows describe Power BI extensibility points including Power BI APIs, custom visuals, and embedding Power BI apps in websites and other applications describe Power Apps portal extensibility points incl
Read more