Microsoft CRM Security Model

banner art

Microsoft CRM provides you with a security model that protects data integrity and privacy and also supports efficient data access and collaboration. The Microsoft CRM security model is designed to support recommended security best practices. The goals of the model are as follows:

  • To support a licensing model for users.
  • To provide users with access only to the appropriate levels of information required to do their jobs.
  • To categorize types of users by role and restrict access based on those roles.
  • To support data sharing, so that users can be granted access to objects that they do not own for a specified collaborative effort.
  • To prevent a user's access to objects the user does not own or share.

Role-based security in Microsoft CRM focuses on grouping a set of privileges together that describe the responsibilities (or tasks that can be performed) for a user. Microsoft CRM includes a set of predefined security roles, each of which is a set of user rights aggregated to make user security management easier. Each application deployment can also define its own roles to meet the needs of different users.

Object-based security in Microsoft CRM focuses on access rights to entities.

You combine role-based security and object security to define the overall security rights that users have within your custom Microsoft CRM application.

In This Topic

Role-Based Security

Defines the role-based security model,

Object-Based Security

Defines the object based security model.

Security Principals

Defines the role of a security principal in this SDK.


Defines access to licenses in the SDK.

Security Dependencies

Explains the dependencies between access rights.

© 2007 Microsoft Corporation. All rights reserved.