How to: Create a Dataset Security
Create a new dataset security
1. Open the window Dataset Security by selecting Departments - Compliance - Security - Field and Dataset Security - Dataset security. The dataset securities per table can be managed in this window (insert, modify or delete).
2. Insert a new dataset security for a table by pressing Ctrl+N.
Note: Only the Security Officer is entitled to create new dataset securities.
3. Complete the following fields in the header:
- No.: Automatic and / or manual, based on the number series settings.
- Description: E.g. Dataset Security Table 27 Item.
- Table ID: Select the ID of the table that you want to split up in datasets. Blocked tables in the Table Categories cannot be used for dataset security. If you select a table that is not categorized you will receive a message. Click Yes if you are sure that you want to setup the dataset security for this table.
4. Data Owner: Select the Permission Set (formerly user role) of the Data Owner of the table:
- The Data Owner is entitled to manage the dataset security for the table.
- The dataset security settings for the table are not applicable for the Data Owner.
- Only the Security Officer is entitled to assign a Data Owner to a dataset security or to create a new dataset security.
5. Start Date: Enter the date from which the dataset security applies (required).
6. End Date: Enter the date until which the dataset security applies (optional).
Note: More than one Secured Dataset may apply to a user. If more than one line is used on visibility, only the first valid line will be applied.
Select checks on which the setup is active
The default checks, defined in Setup module Field and Dataset Security are copied when inserting a new dataset security.
Modifying the checks in the header applies also modifies the checks in the linked permission sets. Deviating checks in the underlying linked permission sets are marked in the field Deviating Trigger Checks.
Define filters
In the sub window of the window Dataset Security, you can split up the table into datasets. Datasets are defined with one or two filter fields with which the permissions of users are restricted.
Note: If you are using the visibility option in the dataset security settings, some modifications to the applicable forms / pages are necessary in Dynamics NAV 2015 and older.
1. Add the number of lines equal to the number of datasets the table has to be split up.
2. Complete the fields per line:
- Dataset Type: select whether the dataset is defined for editability or visibility. Visibility is only applicable for customized forms / pages.
- Filter Field 1 (and 2): the datasets can be defined by one or two fields of the table. Select the field that is used for filtering.
- Filter 1 Type (and 2): select Permission Set (formerly User Role) or User:
- Permission Set: the value of Filter 1 (and 2) and the Assigned Permission Sets are used for granting permissions to the dataset.
- User: the permission to the dataset is based on user specific filter values that are defined with the User Filter functionality of the module (see Setup User Filters).
- Filter 1 Code (and 2): Applicable if Filter Type = User, refers to the User Filter that is used to get the user specific filter value.
- Filter 1 (and 2): Applicable if Filter Type = Permission Set, enter the filter value that is applicable for the dataset line.
- For option fields, e.g. document type and type in table Purchase Line, you can retrieve the available options by entering 0|1|2|3|4|5|6|7|8|9. The software replaces this with the options from the list if you leave the field. Remove any option you do not require.
- The field type is visible when selecting a field.
- Filter And Or: Defines whether the value of Filter 1 and / or Filter 2 is applicable for the dataset. If the Dataset Type is Visible, then only and is allowed.
- No. of Assigned Permission Sets: Applicable if Filter Type = Permission Set. This field shows the number of roles that are linked to the dataset security.
- Deviating Trigger Checks: Marked if checks differs from checks selected in header.
Assign permission sets
Assign, after defining a dataset line with Filter Type = Permission Set, the Permission Set(s) (formerly user roles) for which the dataset is applicable. Dataset lines with Filter Type = User do not use the assigned Permission Sets.
1. Open window Dataset Security.
2. Select the line of the defined dataset.
3. Open Permission Sets per Secured Dataset by selecting Actions (Alt+F10), Line, Assigned Permission Sets (Ctrl+F7 or ).
4. Click on dropdown icon in the field Permission Set-ID to select the Permission Set for which the dataset is applicable.
5. Complete (optional) the assigned Permission Set with the field:
- Company: Add a company name to set company specific security. If it is empty the security is for all companies.
- Starting Date: Used for starting the assignment of the Permission Set at a specified date.
- Ending Date: Used for ending the assignment of the Permission Set at a specified date.
6. If applicable, assign more Permission Sets.
See Setup User Filters for more information about the setup and maintenance of user specific filter values.
Note: After changes in the Dataset Security setting a user has to login again to retrieve the appropriate new settings.