logo

  : :   Blog Det
post-01

Field Level Security in Dynamics 365

Implementing Field Level Security in Dynamics 365

Field-level security in Microsoft Dynamics 365 Customer Engagement (CE) allows you to extend your security model beyond entities, focusing on specific fields within forms. Unlike the standard security role setup, field-level security requires its configuration to grant tailored access to individual fields based on user roles or team assignments.

Dynamics 365 for Sales enables you to add field security profiles for both system and custom fields, following a straightforward two-step process:

Steps for Configuring Field-Level Security

  1. Enable Field-Level Security for the Field
  2. Create and Configure Field Security Profiles


These security profiles grant users or teams specific permissions at the field level, including:

  • Read – Allows read-only access to field data.
  • Read unmasked - The Read column's dataunmasked values.
  • Create – Grants permission to add data to the field when creating a new record.
  • Update – Permits updates to the field’s data after record creation.


Enabling Field-Level Security for a Field

  1. In Dynamics 365, navigate to Settings > Advanced Settings.

 

 

  1. Open Solutions and select the relevant solution.
  1. Choose the field you wish to secure, or create a new one.
  1. Enable Field-level security for the selected field, then save and close.
  1. Add the field to the form if it’s not already there, and publish your customizations.


Setting Up a Field Security Profile

To define security settings for the field:

  1. Ensure you have System Administrator privileges.
  1. Go to Settings > Security > Field Security Profiles.
  1. Note that Dynamics 365 includes a default System Administrator Field Security Profile with full permissions (Read, Update, Create) for all secured fields, which cannot be modified.
  2. Select New to create a custom Field Security Profile, provide a name and optional description, then save.
  1. Under Field Permissions, you’ll see all fields with field-level security enabled, each defaulting to "No" permissions.
  2. Choose the field, click Edit, and set the appropriate permissions (e.g., Read only for the "Actual Name" field).

 

Adding Users and Teams to Field Security Profiles

  1. In the Field Security Profile, navigate to Members and select either Teams or Users.
  2. Click Add and use the Look Up Records dialog to select the desired users or teams.
  3. Confirm your choices by clicking Add.

 

Each field with field-level security is initially added to all profiles with Read, Create, and Update permissions set to "No" by default. Only users or teams with assigned permissions will see field data, while others will view placeholder symbols (“*****”) instead of the actual data. This approach ensures data privacy and allows custom, flexible access settings for each field.

 

- Sachin Sen

https://www.linkedin.com/in/sachin-sen-5b48091b9/ 

FAQS