2-controlware:03authorizationmanagement:overview

  

Authorization Management

Default Microsoft Dynamics NAV authorizations are setup by defining permission sets (formerly user roles). Permissions for one or more objects can be assigned to each role and a role can be assigned to one or more users. This way users can be authorized with permissions to objects. In many cases authorizations are build and setup on work instruction or organization profile level. This approach often leads to large permission sets and uncontrollable permissions. Experience shows that it is better to define roles on task-level and authorize users by referring to the organization roles (organization roles, permissions and responsibilities). By grouping organization roles into organization profiles, the authorizations that are necessary to execute his or her organization profile can easily be identified per user. Default Dynamics NAV provides no functionality to group roles into profiles

The module Authorization Management simplifies the setup of authorizations. The core of the module inserts a layer between users and roles. This layer is called the organizational roles (formerly user profiles) and it groups permission sets. This way the administrator is able to create profiles that are (almost) equal to the organization roles within the organization. Authorizing users is from then limited to link users to a organizational role, rather than an often uncontrollable number of roles.

You can read the following about the Authorization Management in our documentation:

  • 2-controlware/03authorizationmanagement/overview.txt
  • Last modified: 2020/09/25 09:30
  • by luukvm