Hi,
I have a dataverse based model driven app that lets users create records in a custom table "cases". "cases" is accessed with a security role with row based rw per user. For each case, the user has to chose a user from a distinct set of other systemusers as the manager of this case. The manager needs to have rw rights on all the records where he is selected as the manger. All other users have no access rights to the record.
Record | Owner | Manager |
1 | User 1 | User 11 |
2 | User 1 | User 12 |
3 | User 2 | User 11 |
For the moment I handle this with sharing the record with the specified manager with a power automate flow. But I read multiple times that automatic sharing is really bad for a couple of reasons (performance, manageability...).
How would you accomplish these security requirements without using sharing? Would you use automatically created Access-Teams?
How to Add Users to an Access Team with Power Automate (mibar.net)
Hi @carl1to ,
Based on your business case, I would recommend utilizing Access Teams, yes. This is what i have used in the past many times to provide ad-hoc type types for specific records. You can create multiple access team templates with different security and assign as required.
You can also call actions in Power Automate (and I think in real time classic workflow as well) to add the user to the access team (https://learn.microsoft.com/en-us/power-apps/developer/data-platform/webapi/reference/addusertorecordteam?view=dataverse-latest) and there is a corresponding one to remove them from an access team (https://learn.microsoft.com/en-us/power-apps/developer/data-platform/webapi/reference/removeuserfromrecordteam?view=dataverse-latest)
Hey @carl1to
This might help you - https://www.jondoesflow.com/post/configuring-column-level-security-in-a-dataverse-table
WarrenBelz
791
Most Valuable Professional
MS.Ragavendar
410
mmbr1606
275
Super User 2025 Season 1