Archive

Posts Tagged ‘Dynamics AX 2012 Security Overview’

Security Framework in Microsoft Dynamics AX 2012 – Part One

July 9th, 2012 Khushhal Garg No comments

Today, I am going to focus on the new security framework in Microsoft Dynamics AX 2012. Microsoft Dynamics AX 2012 has a new security framework based on role-based security. In Dynamics AX 2009, it was hard to setup security without a developer, but in Dynamics AX 2012 a system administrator can setup security roles with very little help required from developers. In case data level security is required, developer help is required to create XDS policies, which is a new concept in Dynamics AX 2012. But once XDS policies are created by a developer, an administrator can manage security and assign users to security roles.

In Part I of today’s topic, I will cover the Security Model Overview.

Security Model Overview: The new security framework in Dynamics AX 2012 contains many new elements. Figure 1 contains all the elements that are part of it.

  • User groups no longer part of the security framework.
  • Security roles, duties, privileges are new elements used in security framework.
  • Domains are replaced with Organizations.
  • Companies are replaced with Legal Entities.
  • Security keys are no longer used.
  • Flexible Authentication
    • External users can connect to Enterprise Portal without having an account in Active Directory.
    • Active Directory groups can be used as authentication type, which is a great help as a system administrator can control the access by Active Directory groups. If a user is removed from an Active Directory group that already has access to AX, the user will lose access to Dynamics AX without needing to do anything in Dynamics AX. Similarly, if a user is added in an Active Directory group that already has access to Dynamics AX, then the user will automatically get access to Dynamics AX without needing to add the user explicitly in Dynamics AX.
    • Roles are added directly to the groups similar to Active Directory users.
  • Hierarchical level security support is available.

Dynamics AX 2012 comes with over 80 security roles, which is a great help. These can be used as a starting point to setup security. New security roles, duties and privileges can be created based on business requirements.

Permissions can be set on user interface elements, tables and fields, SSRS reports, service operation securable objects.

Extensible data security (XDS) is a new concept added in the Dynamics AX 2012 security framework to control data security. In Dynamics AX 2009, Record Level Security (RLS) used to control data security. Though RLS exists in Dynamics AX 2012, it is not recommended to be used as it will be deprecated in the next release. I will cover it in more detail in future blogs on the Dynamics AX 2012 security framework.

Security Model Overview

Figure 1: The new security framework in Microsoft Dynamics AX 2012 contains many new elements, such as user authentication and authorization; security roles, duties, permissions; hierarchical level security support; etc

List of definitions for technical terms used in regards to Microsoft Dynamics AX

Figure 2: Here is a list of definitions for technical terms used in regards to Microsoft Dynamics AX

Stay tuned for Part II to cover more on the Microsoft Dynamics AX 2012 security framework. In the meantime, if you have any questions about Microsoft Dynamics AX 2012, please email us at dynamics@ignify.com.

Khushhal Garg is a Technical Manager of Microsoft Dynamics AX at Ignify. Ignify is a leading provider of Microsoft Dynamics ERP solutions to mid-market and Enterprise businesses. Ignify has been ranked as Microsoft Partner of the Year Winner in 2011 and 2010, and in the Microsoft Dynamics Inner Circle, Microsoft Dynamics Presidents Club in 2009. Ignify has offices and team members in Southern California, Northern California, Arizona, Tennessee, Illinois, Washington, Canada, Singapore, Malaysia, India, Philippines, and Jakarta.