Activities

Activity

Area

Description

Activate field security policy version

Dynamic field security

To apply a field security policy, you must activate it.

Apply form mapping to field security policy

Dynamic field security

Once a form mapping for a field security policy is recorded and review is finished, you can apply the form mapping to the field security policy. If you do so, all form mapping records, of the same field security policy as the selected form mapping record, are applied.

For each form mapping record, this data is copied to the field security policy:

Table name (Data source name)
Form name (Only if the Create form specific setup field is set to 'Yes')
Table field name, control name, or Dimension name

Change field security policy table setup sequence

Dynamic field security

You can define the sequence in which the table setup records are applied.
Usually, in the table setup records, you can have:

One record for each table and form combination (form-specific).
One record with only the table defined and no form (table-specific).

The table setup records are applied in the sequence as defined in the table setup. The first applicable table setup record that is found, is applied.
You can have a table setup for the same table with both form-specific records and a table-specific record. In this case, you are advised to have the table-specific record applied as the last one. Otherwise, the form-specific records are not applied at all.

Create dynamic query with the Wizard

Dynamic field security

You can use a dynamic query to define the data in the database to which a field security policy applies.

You can link a dynamic query to a condition that is applied to a field security policy.

This topic explains how to set up a dynamic query with the Query wizard.

You can also start the dynamic query wizard from an existing query to edit it.

Create field security policy

Dynamic field security

Use a field security policy to define for which forms, tables, or fields editing is locked or allowed.

This topic explains how to create a field security policy.

Create field security policy version

Dynamic field security

Use field security policy versions to manage changes on field security policies.

You can create a new field security policy version, for example, if you have an active version and want to make changes to the field security policy. In this case, create a new version, based on the active version, and make the changes in that version.

Develop function class

Dynamic field security

You can use a function to fill the value of a condition on a query range.
For a function, a class is required. To develop this class, extend the DQFFunctionRun class.
Prerequisite: Develop the extension of the DQFFunctionRun class in the AOT before you start the steps.
The steps in this topic are to have the developed function class uploaded as function.

Download field security policy file

Dynamic field security

When a field security policy is exported in the background, the created XML file is stored in Download transactions. You can download the XML file to your local download folder.

Edit field security policy field setup

Dynamic field security

Use a field security policy to define for which forms, tables, or fields editing is locked or allowed.

If the form mapping is recorded and applied to a field security policy, and you have edited the table setup, edit the related field setup.

In the field setup, you define the fields, controls, or dimensions to which the field security policy applies. You also define how the policy is applied to the fields, controls, or dimensions.

The security level defines how to set up the policy and how it is applied:

Security level	Description	Field setup	Condition setup
Table	Editing is locked or allowed for the whole table.	Only define one field setup record if you want to apply conditions. For this field setup record, these fields must be empty: Field name, Control name, and Dimension name. The settings of the Default action field and Skip field are not considered.	You can only apply generic conditions, for example, on user or role.
Table field	Editing is locked or allowed for specific table fields.	Define the desired field setup records. The settings of the Default action field and Skip field are considered. Note: The field setup default action overrules the table setup default action. For example, to allow editing of a few fields of a table with many fields, set the default action of the: Table setup to Lock edit. Field setup to Allow edit.	For each field setup record, you can define the desired conditions. You can only apply generic conditions, for example, on user or role.
Record	Editing is locked or allowed for the whole record.	Define one field setup record. For this field setup record, these fields must be empty: Field name, Control name, and Dimension name. The settings of the Default action and Skip fields are not considered.	Apply conditions to define the records to which the policy applies. Define the conditions based on record data. For example, editing a record is only allowed if the: Record has a specific status. Customer belongs to a specific customer group. Item is within a range of item numbers.
Record field	Editing is locked or allowed for specific record fields.	Define the desired field setup records. The settings of the Default action field and Skip field are considered. Note: The field setup default action overrules the table setup default action. For example, to lock editing of a few record fields, set the default action of the: Table setup to Allow edit. Field setup to Lock edit.	Apply conditions to define the records to which the policy applies. Define the conditions based on record data. For example, editing a record field is only allowed if the: Record has a specific status. Customer belongs to a specific customer group. Item is within a range of item numbers.

Edit field security policy table setup

Dynamic field security

Use a field security policy to define for which forms, tables, or fields editing is locked or allowed.

If the form mapping is recorded and applied to a field security policy, edit the table setup.

In the table setup, you define the tables, and optionally, forms, to which the field security policy applies. You also define how the policy is applied to the tables and forms.

The security level defines how to set up the policy and how it is applied:

Security level	Description	Field setup	Condition setup
Table	Editing is locked or allowed for the whole table.	Only define one field setup record if you want to apply conditions. For this field setup record, these fields must be empty: Field name, Control name, and Dimension name. The settings of the Default action field and Skip field are not considered.	You can only apply generic conditions, for example, on user or role.
Table field	Editing is locked or allowed for specific table fields.	Define the desired field setup records. The settings of the Default action field and Skip field are considered. Note: The field setup default action overrules the table setup default action. For example, to allow editing of a few fields of a table with many fields, set the default action of the: Table setup to Lock edit. Field setup to Allow edit.	For each field setup record, you can define the desired conditions. You can only apply generic conditions, for example, on user or role.
Record	Editing is locked or allowed for the whole record.	Define one field setup record. For this field setup record, these fields must be empty: Field name, Control name, and Dimension name. The settings of the Default action and Skip fields are not considered.	Apply conditions to define the records to which the policy applies. Define the conditions based on record data. For example, editing a record is only allowed if the: Record has a specific status. Customer belongs to a specific customer group. Item is within a range of item numbers.
Record field	Editing is locked or allowed for specific record fields.	Define the desired field setup records. The settings of the Default action field and Skip field are considered. Note: The field setup default action overrules the table setup default action. For example, to lock editing of a few record fields, set the default action of the: Table setup to Allow edit. Field setup to Lock edit.	Apply conditions to define the records to which the policy applies. Define the conditions based on record data. For example, editing a record field is only allowed if the: Record has a specific status. Customer belongs to a specific customer group. Item is within a range of item numbers.

Export field security policy to file

Dynamic field security

You can export a field security policy to an XML file. With this file, you can import the field security policy in another D365 FO environment.

This topic explains how to export a field security policy to a file.

This setup is included in the export:

The selected field security policy with the table setup, field setup, and condition setup.
All versions or a specifically selected version of the field security policy.
The linked company groups. The companies as defined in the company groups are not exported.

Import field security policy from file

Dynamic field security

You can export a field security policy to an XML file. With this file, you can import the field security policy in another D365 FO environment.

This topic explains how to import a field security policy from a file.

This setup is included in the import, depending on the contents of the file:

The field security policy with the table setup, field setup, and condition setup.
All versions or a specifically selected version of the field security policy, depending on what is included in the file.
The linked company groups. The companies, as defined for the company groups in the export environment, are not included in the import.

Record form mapping

Dynamic field security

Use the form mapping to define which tables, forms, and fields you want to include in the field security policy.

For a specific field security policy, you can record the relevant form mapping.

When recording, you can record several forms. For each form that you record, a separate form mapping record is created.

Review form mapping

Dynamic field security

Use the form mapping to define which tables, forms, and fields you want to include in the field security policy.

To create a form mapping, you record it. The recording results are stored in the Form mapping table. You can review and edit the recorded form mapping. Usually, you only delete undesired recorded fields from the form mapping. To add a field to the form mapping, record it.

Select field security policy version

Dynamic field security

Use field security policy versions to manage changes on field security policies.

If several versions exists of a field security policy, you can select which version is shown on the page.

Set up field security policy conditions

Dynamic field security

Use a field security policy to define for which forms, tables, or fields editing is locked or allowed.

If the form mapping is recorded and applied to a field security policy, and you have edited the table setup and field setup, define the applicable conditions.

In the condition setup, you define how the policy is applied.

To define a condition, you can use one of these options:

Inquiry: Use a D365 FO inquiry to define the condition.
Dynamic query: Use a query from the Dynamic query framework to define the condition.

The security level defines how to set up the policy and how it is applied:

Security level	Description	Field setup	Condition setup
Table	Editing is locked or allowed for the whole table.	Only define one field setup record if you want to apply conditions. For this field setup record, these fields must be empty: Field name, Control name, and Dimension name. The settings of the Default action field and Skip field are not considered.	You can only apply generic conditions, for example, on user or role.
Table field	Editing is locked or allowed for specific table fields.	Define the desired field setup records. The settings of the Default action field and Skip field are considered. Note: The field setup default action overrules the table setup default action. For example, to allow editing of a few fields of a table with many fields, set the default action of the: Table setup to Lock edit. Field setup to Allow edit.	For each field setup record, you can define the desired conditions. You can only apply generic conditions, for example, on user or role.
Record	Editing is locked or allowed for the whole record.	Define one field setup record. For this field setup record, these fields must be empty: Field name, Control name, and Dimension name. The settings of the Default action and Skip fields are not considered.	Apply conditions to define the records to which the policy applies. Define the conditions based on record data. For example, editing a record is only allowed if the: Record has a specific status. Customer belongs to a specific customer group. Item is within a range of item numbers.
Record field	Editing is locked or allowed for specific record fields.	Define the desired field setup records. The settings of the Default action field and Skip field are considered. Note: The field setup default action overrules the table setup default action. For example, to lock editing of a few record fields, set the default action of the: Table setup to Allow edit. Field setup to Lock edit.	Apply conditions to define the records to which the policy applies. Define the conditions based on record data. For example, editing a record field is only allowed if the: Record has a specific status. Customer belongs to a specific customer group. Item is within a range of item numbers.