web
You’re offline. This is a read only version of the page.
close
Skip to main content
News and Announcements icon
Community site session details
Power Platform Community / Forums / Power Apps - Microsoft Dataverse / Security Set up for Re...
Power Apps - Microsoft Dataverse
Answered

Security Set up for Record-based Manager (alternative for sharing)

Like (0) ShareShare
ReportReport
Posted on 8 Aug 2022 12:53:34 by carl1to 206

Hi,

 

I have a dataverse based model driven app that lets users create records in a custom table "cases". "cases" is accessed with a security role with row based rw per user. For each case, the user has to chose a user from a distinct set of other systemusers as the manager of this case. The manager needs to have rw rights on all the records where he is selected as the manger. All other users have no access rights to the record.

 

RecordOwnerManager
1User 1User 11
2User 1User 12
3User 2User 11

 

For the moment I handle this with sharing the record with the specified manager with a power automate flow. But I read multiple times that automatic sharing is really bad for a couple of reasons (performance, manageability...).

 

How would you accomplish these security requirements without using sharing? Would you use automatically created Access-Teams?

Security - Part 5 | What is Access Team? | How to Configure Access Team? | Dynamics CRM 365 - YouTube

How to Add Users to an Access Team with Power Automate (mibar.net)

Categories:
Microsoft Dataverse
Tables
I have the same question (0)
  • Verified answer
    Drew Poggemann Profile Picture
    Drew Poggemann 9,278 Most Valuable Professional on 01 Nov 2023 at 23:57:47
    Re: Security Set up for Record-based Manager (alternative for sharing)

    Hi @carl1to ,

     

    Based on your business case, I would recommend utilizing Access Teams, yes.  This is what i have used in the past many times to provide ad-hoc type types for specific records.  You can create multiple access team templates with different security and assign as required. 

     

    You can also call actions in Power Automate (and I think in real time classic workflow as well) to add the user to the access team (https://learn.microsoft.com/en-us/power-apps/developer/data-platform/webapi/reference/addusertorecordteam?view=dataverse-latest) and there is a corresponding one to remove them from an access team (https://learn.microsoft.com/en-us/power-apps/developer/data-platform/webapi/reference/removeuserfromrecordteam?view=dataverse-latest

  • JonDoesFlow Profile Picture
    JonDoesFlow 1,304 on 01 Nov 2023 at 21:19:06
    Re: Security Set up for Record-based Manager (alternative for sharing)

    Hey @carl1to 

     

    This might help you - https://www.jondoesflow.com/post/configuring-column-level-security-in-a-dataverse-table

Under review

Thank you for your reply! To ensure a great experience for everyone, your content is awaiting approval by our Community Managers. Please check back later.

Helpful resources

News and Announcements

Welcome to the Power Platform Communities
Join experts in person to explore low code and AI agents at the Power Platform Community Conference sponsored by Microsoft
Responsible AI policies for the Community

Quick Links

Responsible AI policies

As AI tools become more common, we’re introducing a Responsible AI Use…

Telen Wang – Community Spotlight

We are honored to recognize Telen Wang as our August 2025 Community…

Congratulations to the July Top 10 Community Leaders!

These are the community rock stars!

Leaderboard > Power Apps

#1
WarrenBelz Profile Picture

WarrenBelz 673 Most Valuable Professional

#2
Michael E. Gernaey Profile Picture

Michael E. Gernaey 507 Super User 2025 Season 2

#3
MS.Ragavendar Profile Picture

MS.Ragavendar 421 Super User 2025 Season 2

Last 30 days Overall leaderboard

Featured topics

Product updates

Microsoft Power Platform Community release plans