Setup Authorization Management

You can setup the type of users that you want to authorize in the authorization setup and the super permission set ID (formerly user role ID).

Follow the steps below to setup the other settings:

1. Open the window Authorization Management Setup by selecting menu Departments - Compliance - Security - Authorization Management - Setup - Authorization Management Setup.
   
2. Select in the field Super Permission Set ID the permission set that is used as Super Permission Set ID (often SUPER). Users with the super role ID can manage permission set statuses.
3. Check the fields Windows Users and Database Users the type of users that is applicable to your environment. The type of users that you setup here can be managed with the module Authorization Management. Attention! Users created, modified or deleted with the standard Dynamics NAV menu options (in Classic via menu Tools - Security) disrupt the integrity of the module Authorization Management. To correct integrity-issues between the user tables of Dynamics NAV and the module Authorization Management, select Actions, Functions, Refresh Users.
4. FastTab Synchronization shows the date and time of the previous synchronization of the standard Dynamics NAV user tables.For Automatic.
5. Calculate No. of Records: calculates the number of records in each table when the Object Explorer is opened. Because of performance and time required, this can be disabled with this option.
6. Calculate No. of Permission Sets: calculates the number of roles with the object when opening the Object Explorer.

We advise to perform the synchronization of users and organizational roles (formerly user profiles) periodically.

1. Use the Job Queue of Dynamics NAV to schedule the execution of Codeunit 11111990 2C Job Scheduler. We advise to run the job on a weekly schedule.
2. Mark Process with Job Scheduler on FastTab Synchronization to activate the synchronization of the users and organizational roles by using the 2C Job Scheduler.
3. Choose the preferred Synchronization Type when synchronizing an user or organizational role:

• Add Permission Sets: By this synchronization type the permission set (formerly user role) are added and / or deleted to the security tables of standard Dynamics NAV. Manually added permission set to the user are not deleted.
• Replace Permission Sets: The security tables of standard Dynamics NAV contain only permission set assigned to an user by organizational roles.

One of the basic principles of the module Authorization Management is that users cannot be managed from the default Dynamics NAV windows. However, we cannot prevent this. If an user is added, renamed or modified from the default Dynamics NAV windows, you will receive the following message:

“The selected User cannot be found in the Navision table User. Possibly this module is bypassed by renaming or deleting the User, which leads to integrity problems. Press the Refresh button in the setup to continue. Please contact your system administrator to solve the problem.”

This procedure explains how you can recover the integrity of the user table.

Follow the steps below to recover the integrity of the user table with the module Authorization Management:

1. Open the window Authorization Management Setup.
2. Refresh the user authorization functionality. Select Actions, Functions, Refresh Users. This function synchronizes the default Dynamics NAV user tables with the user authorization tables.
3. Reopen and use the window User Authorization.