Applies to Product - Microsoft Dataverse
What’s happening?
Users are able to view or open environments that are secured with a security group, despite not being members of that security group.
Reason:
The user is a member of a different security group that has been granted access to the environment, allowing them to see it even though they are not part of the specific security group assigned to that environment.
Resolution:
- Verify if the user is a member of any security groups in Microsoft Entra ID.
- Check if the user is an application user or holds any security roles in the environment.
- If the user is part of another security group that has access to the environment, consider removing them from that group to restrict access.
- Ensure that global admin, Power Platform admin, and Dynamics 365 admin roles are directly assigned to users, as assignment via security groups is not supported.
