Share
Report
156Hi,
Currently I am researching about Hierarchy Security based on this document. I want to apply Manager hierarchy for our system. I did some tests and got into some issues. Here are my steps and test case.
1. I created a custom entity and enable the Hierarchy Security in the Advance Setting, and I select the custom entity.
2. I created a Security Role and set the Create/Read/Write/Delete/Append/Append To/Assign/Share to User level.
3. I created a Team and add all the test users, and assign the custom Security Role and the role Common Data Service User
4. I edit all test user and add Manager for them.
Test: I login as the lowest level user and create a record, but I cannot see the record I created. I login as the admin user and see that the record was created. Meaning the test user is missing some Security Roles.
Try 1: I changed the key level of the custom Security Role from User to Business Unit => now all the test users can see all the records and can fully edit and delete the record that they do no own.
Try 2: I checked and found out that Common Data Service User only work for non-custom entities, so I changed from Common Data Service User to System Customizer, and reduce the level of the custom Security Role from Business Unit => same result, all the test users can see all the records and can fully edit and delete the record that they do no own.
So now I need some advices of which security role and key level I need to have to setup this correctly this is the summary of my needs:
- Work with custom entities
- User in the same level cannot see each other record
- User in the same level cannot see other users' subordinates record
- Manager can see the data of the subordinates and the subordinates' subordinates (depends on the defined Depth)
Thank you.
All responses (
Answers (
