PL400 : configure business units and teams (Configure Microsoft Dataverse Security)

Business units are core components of security model and these components work like framework on which a security model is built. These components provide security and structure for grouping users and are often used to replicate the departmental or division structure of an organization. Each user assigned to a Dataverse environment will belong to a business unit. The first business unit created for an organization is called the root business unit. Business units can be deleted, however, the root business unit cannot be deleted. System Administrator has full permission to customize or administer the environment, including creating, modifying, and assigning security roles and can view all data in the environment. 


 A Business Unit is a logical grouping of related business activities.

It is the foundation of the security structure in the Microsoft Dataverse. Each user must be part of a business entity. There is a default business unit that is created when a Dataverse database is provisioned. We can control access to information throughout the organization using business units, teams, and Territories.


Important points:

  • Business units define a security boundary.
  • Every Dataverse database has a single root business unit (Organization).
  • The Organization (also known as the root business unit) is the top of a business unit hierarchy.
  • Root business unit is automatically create when provision customer engagement app.
  • We can't delete root business unit.
  • The organization name is derived from domain name when environment was provisioned
  • we can't change the organization name using root business unit , but it can  be changed using the web API.
  • Each Business can have just one parent business unit.
  • Each Business can have multiple child business unit.
  • Security roles and users  are associated with a business unit., therefore every user must be assigned  a business unit.
  • We can change the user's business unit directly.
  • A team can consist of users from one or many business unit.
  • Before deleting a business unit, need to consider the following
    • Deleting a business unit is irreversible
    • the records owned by business unit (for example, Teams, facilities/equipment and resource groups) are deleted at the same time when we delete the business unit.
    • We can't delete a business unit until we reassign all the business unit records to another business unit.

  • When we disable a business unit, all users and teams associated with the business unit will not be able to sign in.
  • Users are not deactivated or removed if their business unit becomes inactive. They remain valid/active in the system, but they cannot log in because their business unit is disabled. This is an important difference because they continue to consume the Client Access License (CAL) even though they do not have access to the system.

Below components works tightly with business units:

  • Users
  • Business unit
  • Teams
  • Facilities/equipment 
  • Resource Group

Team:

Please go below links for knowledge about Team.

Team based Security in Microsoft Dynamics 365 CE (Part 1)
Team based Security in Microsoft Dynamics 365 CE : Owner Team (Part 2)
Team based Security in Microsoft Dynamics 365 CE : Access Team (Part 3)
Team based Security in Microsoft Dynamics 365 CE : Azure AD Security Group Team (Part 4)


Comments

Post a Comment

Popular posts from this blog

Powering Up Your Analytics: Exploring Power Query in Power BI

Image
Data is a valuable asset that has a profound impact on almost every aspect of modern life. Its proper collection, analysis and application can promote innovation, improve efficiency and solve complex challenges in various sectors. In data processing, ETL is a comprehensive process that includes data extraction, transformation, and loading, while Power Query is a specific tool that facilitates the "extract" and "transformation" aspects of ETL, allowing data to be collected and analyzed. Permission is granted to process. And reporting. is ready. It becomes easy to do this. Microsoft's ecosystem of products. Power Query is a data transformation and data preparation engine. Power Query is available in Microsoft Excel and Power BI. Power Query provides a user-friendly and intuitive interface for data professionals and analysts to access and manipulate data from various sources without the need for extensive coding or scripting. It allows users to connect to a wide ra
Read more

Power App Component Overview : Canvas App vs Model-Driven App

Image
The Power Platform is a suite of low-code/No-code tools and technologies developed by Microsoft and Power App is integral component of Power Platform. Power App is platform that enables users to build custom web and mobile applications with a visual interface and minimal coding. The platform support various data sources, including Microsoft 365, Azure Service, and many other, enabling users to integrate and interact with their existing data and systems. In Microsoft's Power Apps, there are two main types of apps that we can create: Canvas Apps: Canvas apps provide a blank canvas where you can design highly customizable applications with a drag-and-drop interface.  Model-Driven Apps: Model-driven apps are built on top of the Dataverse, which provides a set of pre-built data entities and business logic. There are few key technical difference between Canvas App and Model Driven App: During the usability analysis, these high-level technical differences need to be considered. The choi
Read more

Exam PL-400: Microsoft Power Platform Developer

 Create a technical design (10-15%) Validate requirements and design technical architecture design and validate the technical architecture for a solution design authentication and authorization strategy determine whether you can meet requirements with out-of-the-box functionality determine when to use Logic Apps versus Power Automate flows determine when to use serverless computing, plug-ins, or Power Automate determine when to build a virtual entity data source provider and when to use connectors Design solution components design a data model design Power Apps reusable components design custom connectors design server-side components Describe Microsoft Power Platform extensibility points describe Power Virtual Agents extensibility points including Bot Framework skills and Power Automate flows describe Power BI extensibility points including Power BI APIs, custom visuals, and embedding Power BI apps in websites and other applications describe Power Apps portal extensibility points incl
Read more