web
You’re offline. This is a read only version of the page.
close
Skip to main content

Announcements

Agent Academy Hackathon is happening now!
Welcome to the Power Platform Communities
News and Announcements icon
Community site session details

Community site session details

Session Id :
Power Platform Community / Forums / Power Apps / Permission for Tables ...
Power Apps
Suggested Answer

Permission for Tables Type "Activity"

(0) ShareShare
ReportReport
Posted on by Aikuido2 205

I have a problem: I have some users with a “Environment Maker” role who shouldn't have admin privileges.

However, they need to be able to grant permissions to all Dataverse tables on their own. So I assigned the “System Customizer” role to them, and now they can grant permissions to all tables themselves. However, they cannot grant permissions for tables of the “Activity” type. Do you have any idea how I can solve this without having to assign the System Administrator role to that person? Ideally, it would be best if that person could only grant permissions for this type of table and nothing else (principle of least privilege).

 
Categories:
Governance & administering
I have the same question (0)
  • ronaldwalcott Profile Picture
    ronaldwalcott 3,906 Moderator on at
     
    Is there a reason that you cannot access the admin center and create a new role with the privileges that you need for the user?
     
     
     
     
     
     
  • Aikuido2 Profile Picture
    Aikuido2 205 on at
    Yeah i can add a new role, but is there a permission for tables of the type "activity"?
  • ronaldwalcott Profile Picture
    ronaldwalcott 3,906 Moderator on at
    Not quite sure what you mean but see
     
     
     
  • Suggested answer
    11manish Profile Picture
    11manish 2,430 on at
    Yes — this behavior is expected in Dataverse security because Activity tables (Email, Task, Appointment, Phone Call, custom activity tables, etc.) are treated
     
    differently from standard tables.
     
    The System Customizer role can customize the system and grant many permissions, but it does not automatically provide all privilege-management capabilities
     
    for Activity tables. Activity tables have additional ownership/security dependencies tied to:
    • ActivityPointer
    • ActivityParty
    • organization-level activity privileges
    • append/append-to relationships
    That’s why users can manage normal tables but fail for Activity-type tables.
     
    Recommended Solution (Least Privilege Approach)
    • Instead of assigning System Administrator, create a custom security role with only the required Activity-related privileges.

Under review

Thank you for your reply! To ensure a great experience for everyone, your content is awaiting approval by our Community Managers. Please check back later.

Helpful resources

News and Announcements

Agent Academy Hackathon is happening now!
Welcome to the Power Platform Communities

Quick Links

Introducing the 2026 Season 1 community Super Users

Congratulations to our 2026 Super Users!

Kudos to our 2025 Community Spotlight Honorees

Congratulations to our 2025 community superstars!

Congratulations to the April Top 10 Community Leaders!

These are the community rock stars!

Leaderboard > Power Apps

#1
Vish WR Profile Picture

Vish WR 610

#2
Haque Profile Picture

Haque 317

#3
WarrenBelz Profile Picture

WarrenBelz 315 Most Valuable Professional

Last 30 days Overall leaderboard

Featured topics

Auto-Populate field Power Pages
Gallery Tabs - Show or Hide Tabs based on Field Value
How to patch multiple records at once
Enable Copilot for end users in model-driven apps
Question for everyone : How are you using Create Text GPT in AI Builder?
Community content - sample components, blogs etc. - Link to this page (http://aka.ms/PCFdemos)
Welcome to the Power Apps forum!

Product updates

Microsoft Power Platform Community release plans