Power Platform Community Forum Thread Details

When you have the "Append To" permission without the "Read" permission, you can't actually append a record to another as you can't use the lookup.

In our case we have a "Device manager" security role that creates the custom entity "Device" record and assigns an owner of the device, which is a custom entity "Employee". In the employee record we have sensitive data that the device manager should not be able to view.

I tried column security on the employee fields but the timeline can't be secured that way and we have notes with sensitive information that would then be visible.

What's the best way to solve that issue? I would also like to have a list of assigned devices on the employee record, so going through another entity is not preferred.

Regards

Categories:

Microsoft Dataverse with Power Apps

I think unfortunately there's not great OOB/standard options outside of what you've already listed.

I.e... it sounds like a case for Field Level Security on the specific sensitive fields of "Employee" records. So having Global "Read" of Employee records as a whole but then sensitive fields have Field Level Security.

I don't understand your timeline concern related to sensitive data. That sounds like Users are putting sensitive info into Notes, which is another issue/topic. I have seen clients create a new custom entity called like "Sensitive Notes" which they made have whatever security they wanted, maybe that idea helps your scenario.

Similar discussion on another forum post: https://community.dynamics.com/forums/thread/details/?threadid=e4c99995-535f-411e-a99c-d56a4a1dc67f