which security role for import solution only

(0) Share

Report

Posted on by ALP2

242

hi,

Is it possible for a DEV user to import only his solution to the TEST environnement ?

Thanks

Categories:

Microsoft Dataverse with Power Apps

I have the same question (0)

All responses (6)

Answers (1)

a33ik 3,306 Most Valuable Professional on at

Like (1)

Report

Hello,
That's possible.

Was this reply helpful? Yes No
João Santos 323 on at

Like (1)

Report

Hi,
Agree, this should be possible with the System Customizer Security Role. I'm guessing you want to give the developer just the bare minimum to be able to import their solution?
It might depend on the type of solution and what components you have in it, but I've used in the past only the system customizer role on an ALM Application User to do automated deployments to Test and Live environments.

Was this reply helpful? Yes No
Verified answer

ALP2 242 on at

Like (0)

Report

Yes it's for the developer(s). We would like to give the permission to the developers to push their solution to the Test Environnement.
@joaodsantos when you said you used this role in the past, do you use a better method today ?

Was this reply helpful? Yes No
João Santos 323 on at

Like (1)

Report

Not necessarily a better method, you might even say it's a lazier one 🙂 I just tend to give the Application User the System Admin role. Since it's configured on the Pipelines and no one can actually retrieve the client secret or change the pipelines definition. It's "secured" that way.
The ALM process I was talking about in the past was for a higher profile security project where they wanted to cover all their bases so we went with minimum required, there was just solution imports of a relatively straightforward implementation, no data.
As soon as you add Data Migration (for reference data or configuration) you'll need a security role that grants access to tables other than metadata ones if you want the dev or a pipeline to do it.
Also, I'll be honest, because I tend to use Sys Admin role I'm not sure if Environment Variables, Flows, etc work with just System Customizer, something to test if they're part of your solution.

Was this reply helpful? Yes No
ALP2 242 on at

Like (0)

Report

Wow, very interesting.
I tried to play with system customizer but it's consuming a lot of time just for some non-critical apps. So, finally, I created a fake ad account as my tech leader use as a service account that has admin ppf role. The techlead who is in charge to deploy solutions use this fake account. Not very secure. I'm not familiar with azure Pipeline for now..

I have an another question, maybe a silly question.
Microsoft recommends to export the solution from DEV environnement as Managed.

My question is : How to publish and share the solution to my QA users with a managed solution ? 😩

Was this reply helpful? Yes No
NPrice99 1,302 on at

Like (0)

Report

Hi @joaodsantos
"As soon as you add Data Migration (for reference data or configuration) you'll need a security role that grants access to tables other than metadata ones if you want the dev or a pipeline to do it." - which OOTB security role is that ?

Regards

Nigel

Was this reply helpful? Yes No