Posts

Showing posts with the label Dataverse Permission

Column Security and Masking rules in Dataverse

Image
Column Security in Dataverse Column Security in Dataverse allows administrators to control who can view, update, or create data at a column level . It is useful when you want to protect sensitive information such as salary, email, bank details, and personal ID fields. 🔍 Why Use Column Security? Protects sensitive data from unauthorized users. Gives granular control - separate read, update, and create permissions. Works with all security roles, teams, and business units. Ensures compliance by restricting visibility to authorized users only. ⚙️ How It Works You enable security on a specific column inside a table. Then create a Column Security Profile . Add users or teams to the profile. Grant permissions like Read, Update, Create. ⚠️ Limitations of Column Security Must be enabled per-column manually (not global). Increases ad...

Dataverse Security Explained: Business Units, Teams, Roles & Ownership

1. Dataverse Table Ownership (Organization vs User/Team) Organization-Owned Table: Records do NOT have individual owners. Only None or Organization permission levels are allowed. Used for: Configuration tables, global reference data. User/Team-Owned Table: Records are owned by users OR teams. Allows scopes: None, User, Business Unit, Parent:Child BU, Organization . Used for: Operational data (Projects, Cases, Accounts). 2. Business Unit vs Team (They Are Not Same) Business Unit: Defines security boundary and data visibility. Every user belongs to exactly one BU. Cannot own records. Team: A group inside a Business Unit. Can own records (Owner Team). You can add/remove members. Roles assigned to Teams apply only to Team members. 3. Default Business Unit Team (Auto-created Team...