Security and .NET Business Connector Applications

Applies To: Microsoft Dynamics AX 2012 R3, Microsoft Dynamics AX 2012 R2, Microsoft Dynamics AX 2012 Feature Pack, Microsoft Dynamics AX 2012

Microsoft Dynamics AX .NET Business Connector uses authentication and security privileges to implement security.

Authentication

.NET Business Connector uses Microsoft Windows authentication. Authentication is the process by which the system validates user logon information. A user name and password are compared with an authorized list. If the system detects a match, access is granted to the extent specified in the permission list for that user. A Microsoft Dynamics AX user is allowed to use .NET Business Connector if they satisfy one of the following criteria:

  • User is assigned to the System administrator role

  • User is assigned to the Business Connector role

  • User is assigned to a role with the privilege of doing a .NET Business Connector operation

For information on how to assign a user to a role, see Assign users to security roles. For more information, see Authentication.

Security Privileges

Security privileges are permissions on specific application elements. You can assign privileges to roles and users are then assigned to the role. The following security privileges in Microsoft Dynamics AX enable a user to perform operations through the .NET Business Connector. These are located under AOT > Security > Privileges.

Privilege

Description

SysCom

Allows the Logon operation.

SysComExecution

Allows an X++ query to be run.

SysComISS

Allows the Logon operation using .NET Business Connector through a Web process, for example Internet Information Services (IIS).

SysComDataCreate

Allows new rows to be created.

SysComDataRead

Allows access to data rows.

SysComDataUpdate

Allows existing rows to be updated.

SysComDataDelete

Allows existing rows to be deleted.

Note

If the user is assigned to the SysBusinessConnectorRole role, all .NET Business connector operations are allowed and the security privileges are ignored. The security privileges are checked only if user is not assigned to the role SysBusinessConnectorRole.

See also

.NET Business Connector Overview

How to: Debug X++ Code Running in .NET Business Connector

Security overview

Role-based Security in the AOT for Developers

Announcements: New book: "Inside Microsoft Dynamics AX 2012 R3" now available. Get your copy at the MS Press Store.