Authorization Management
Default Microsoft Dynamics NAV authorizations are setup by defining permission sets (formerly user roles). Permissions for one or more objects can be assigned to each role and a role can be assigned to one or more users. This way users can be authorized with permissions to objects. In many cases authorizations are build and setup on work instruction or organization profile level. This approach often leads to large permission sets and uncontrollable permissions. Experience shows that it is better to define roles on task-level and authorize users by referring to the organization roles (organization roles, permissions and responsibilities). By grouping organization roles into organization profiles, the authorizations that are necessary to execute his or her organization profile can easily be identified per user. Default Dynamics NAV provides no functionality to group roles into profiles
The module Authorization Management simplifies the setup of authorizations. The core of the module inserts a layer between users and roles. This layer is called the organizational roles (formerly user profiles) and it groups permission sets. This way the administrator is able to create profiles that are (almost) equal to the organization roles within the organization. Authorizing users is from then limited to link users to a organizational role, rather than an often uncontrollable number of roles.
You can read the following about the Authorization Management in our documentation:
- Setup Authorization Management: Basic settings for the use of Authorization Management.
- Work with Permissions Sets: An overview and managing of the Permission Sets.
- Work with Organization Roles: Creating, managing and synchronizing Organization Roles.
- Work with Users: Creating, managing and synchronizing users.
- Work with Object Explorer: An overview of the Object Explorer.
- Work with Company Groups: Creating new Company Groups.