Security privileges (form)
Applies To: Microsoft Dynamics AX 2012 R3, Microsoft Dynamics AX 2012 R2, Microsoft Dynamics AX 2012 Feature Pack, Microsoft Dynamics AX 2012
Click System administration > Setup > Security > Security privileges.
Use this form to create or modify security privileges, duties, and process cycles.
The security model is a hierarchy, with each element representing a different level of detail. At the top of the hierarchy are process cycles. Process cycles are composed of duties, and they represent business processes, such as the expenditure process. Duties are composed of privileges, and they represent parts of a business process, such as maintaining bank transactions. Privileges are composed of permissions, and they represent access to tasks, such as canceling payments or processing deposits. Permissions grant access to application elements, such as forms and menu items.
Both duties and privileges can be assigned to roles to grant access to the application. Process cycles are used only to organize duties and privileges. If a duty or privilege is not assigned to a process cycle, that duty or privilege is not available in the Security privileges form. To work with duties and privileges that do not appear in the form, you must use Application Object Tree (AOT).
Warning
If security is administered in multiple languages in your implementation, we recommend using the Label editor in the developer workspace to modify name and description labels. By using the Label editor, you can create labels in multiple languages.
Tasks that use this form
Create or modify a security privilege, duty, or process cycle
Navigating the form
The following tables provide descriptions for the controls in this form.
Tabs
Tab |
Description |
|---|---|
Summary |
Displays the number of process cycles, duties, and privileges in the system. This information is displayed only when the top-level Process cycles node is selected in the left pane. |
Details |
Displays detailed information about the selected process cycle, duty, or privilege, including the AOT name, the display name, and the description. This tab is displayed when a process cycle, duty, or privilege is selected in the left pane. |
Buttons
Button |
Description |
|---|---|
New |
Create a new process cycle, duty, or privilege. The type of object that is created depends on the type of object that is currently selected. For example, if a process cycle is selected, a duty will be created when you click this button. If a duty is selected, a privilege will be created when you click this button. |
Delete |
Delete the selected process cycle, duty, or privilege. If more than one instance of the selected duty or privilege exists, you will have the option to delete only the selected instance or all instances. If you select multiple privileges, you will see multiple confirmation dialog boxes when you select to delete. You cannot delete a duty if it contains privileges, and you cannot delete a process cycle if it contains duties. You cannot delete different types of nodes (duties and privileges, for example) at the same time. When you delete a duty or privilege, segregation of duties rules associated with that duty or privilege are disabled. |
Open in new window |
Open another instance of the Security privileges form with the selected process cycle, duty, or privilege as the focus. Opening another instance of the form allows you to drag and drop elements between the forms. |
Add |
Open the Add permissions to privilege form to select additional permissions to add to a privilege. This button is displayed only when a privilege is selected in the left pane. |
Remove |
Remove the selected permission from the privilege. The permission will not be deleted from the system. This button is displayed only when a privilege is selected in the left pane. |
Override access level |
Select the access level to be allowed by the selected permission:
This button is available only when a privilege is selected in the left pane. |
Fields
Field |
Description |
|---|---|
Process cycles |
Lists the names and descriptions of all process cycles in Microsoft Dynamics AX. This information is displayed only when the top-level Process cycles node is selected in the left pane. |
Duties |
When a process cycle is selected, lists the names and descriptions of all duties included in that process cycle. |
Privileges |
When a duty is selected, lists the names and descriptions of all privileges included in that duty. |
Permissions |
When a privilege is selected, lists detailed information about the permissions included in that privilege. |
Operation name |
If the selected privilege grants access to a service operation, this field displays the name of the service operation. This information is displayed only when a privilege is selected in the left pane. |
AOT name |
If you are creating a new process cycle, duty, or privilege, enter a name that will appear in the Application Object Tree (AOT). AOT names must contain only alphanumeric or underscore characters. AOT names cannot begin with a number, and they cannot contain other special characters or spaces. |
Type |
The type of AOT item that the privilege grants access to. For example, Menu item display or Menu item action. This information is displayed only when a privilege is selected in the left pane. |
Access level |
Displays the access level that is allowed by the selected permission: No access, View, Edit, Create, Correction, or Full control. This information is displayed only when a privilege is selected in the left pane. |
See also
Role-based security in Microsoft Dynamics AX
Security architecture of the Microsoft Dynamics AX application
Announcements: To see known issues and recent fixes, use Issue search in Microsoft Dynamics Lifecycle Services (LCS).