Skip to content
Microsoft Dynamics 365 CRM Tips and Tricks
By Inogic
  • Blogs
  • D365 Apps
  • Inogic
  • D365 / Power Platform Services
  • Maplytics Docs
  • D365 Apps Docs
    • Omnichannel Apps
      • WhatsApp4Dynamics
      • TextSMS4Dynamics
      • LiveChat4Dynamics
    • File and Storage Managment
      • Attach2Dynamics
      • SharePoint Security Sync
    • Visualization Apps
      • Map My Relationships
      • Kanban Board
      • Business Process Checklist
    • Productivity Apps
      • Click2Clone
      • Click2Export
      • Undo2Restore
      • Lead Assignment and Distribution Automation
      • Alerts4Dynamics
      • Translate4Dynamics
      • Subscription Recurring Billing Management
    • User Adoption Apps
      • DeDupeD
      • User Adoption Monitor
      • Gamifics365
    • Integration Apps
      • Marketing4Dynamics
      • InoLink

Minimum Privileges required to Login Microsoft Dynamics 365

By Inogic | November 24, 2016
0 Comment

Introduction:

We have been working a lot with security roles recently. Earlier we had the issue with insufficient permissions and then a few days later we had a request to fix a new security role created by a power user.

Defining a Security Role has always been a daunting task. One needs to be very careful while selecting privileges for the Security Role creator.

Dynamics CRM ships with few of the most commonly used Security Role Profiles like Salesperson, Sales Manager, etc. However, not all businesses revolve around these profiles or roles.

Most of the businesses have their own set of Roles, which do tend to differ from the predefined Security Role Profiles.

For a start, the predefined Security Role Profiles could come handy where your task would be to just turn on or off the privileges for a few of the entities, from say Salesperson profile and there you have the Security Profile that you are trying to create.

But, there could be a scenario where you are trying to create a Security Role Profile, that is completely different from any of the predefined Security Role Profiles. With this case, it might be better to start from the scratch and add the privileges rather than pick one of the existing and start modifying it.

Login Security Role

Create a Security Role, with bare minimum privileges. Sounds Good!

But, what could be the bare minimum privileges for a user to at least log-in into the Dynamics CRM?

This blog post will drive you through it!

Let’s create a new Security Role by the name “Log-In”.

This Security Role would hold only those privileges that allow a user to login into Dynamics CRM or to phrase it in another way, without these privileges, you would receive the error “You do not have permission to access these records. Contact your Microsoft Dynamics 365 administrator.”

Insufficient Permissions error

Now, the next step is to assign those Golden Privileges that grants you Bare Minimum Privileges required to access Dynamics CRM.

Navigate to Business Management Tab,

  • Grant Read (Organization Level) Privilege for the Organization entity.

Read Privilege for Organization Entity

  • Grant Read (Business Unit Level) Privilege for the User entity.

Read Privilege for User Entity

  • Grant Read (Organization Level), Append (Organization Level), Append To (Organization Level) Privilege for the Currency entity.

Multiple Privileges for Currency entity

This is it for the Business Management Tab.

Next, navigate to Core Records Tab,

  • Grant Create (Organization Level), Read (Organization Level), Append (Organization Level), Append To (Organization Level) Privilege for the Post Entity.

privileges for post entity

  • Grant Create (User Level), Read (User Level) Privilege for the User Entity UI Settings

User Entity UI Settings

Next, navigate to Customization Tab,

Grant the Privileges as per the below screenshot.

Grant Privileges

This is it for the Log-In Role.

With the above role assigned, a user would be able to login. But note that we have not yet provided the user with any privileges to the core records. You can now add the privileges for the operations allowed by this user.

Ability to record leads and activities against leads.

You can create a new role “Lead Access” and provide the user level privileges for Read, Create, Write, Append, and Append To.

lead

To allow access to record activities against leads, user level privileges for Activity entity needs to be provided.

activity

Dynamics CRM View

A user with the “Log-in” role and “Lead Access” Role would be able to login to the web client and would see the following navigation options.

navigation option

The user will be able to create a new lead

new lead

And add an activity through the social pane

add activity

Note: Using this role the user could perform the said operations on the web client. But depending on the use case at your end, you will have to tweak the privileges to match your specific needs.

Conclusion:

It is always advisable to use the OOB security roles and start tweaking them to match your requirements rather than start from a blank role as apart from the entity privileges there are other special privileges embedded within a security role that might hamper smooth functioning of the system and block user from performing certain operations.

Cut short 90% of your manual work and repetitive data entry!

Get 1 Click apps and say goodbye to all repetitive data entry in CRM –
Click2Clone – Clone/Copy Dynamics 365 CRM records in 1 Click
Click2Export – Export Dynamics 365 CRM Report/CRM Views/Word/Excel template in 1 Click
Click2Undo – Undo & Restore Dynamics 365 CRM data in 1 Click

Category: Dynamics 365 Dynamics CRM 2016 Security Tags: Dynamics 365 insufficient permissions error, Minimum Dynamics CRM Permissions, Minimum Privileges for Dynamics 365 login, Minimum Privileges required to access Dynamics CRM, Minimum Security Permissions in Dynamics CRM
Post navigation
← Qualify Lead using Web API in Dynamics 365 Inogic Add-ons for Dynamics 365 Now Available on AppSource →

Follow Us!

Follow Us on FacebookFollow Us on TwitterFollow Us on LinkedInFollow Us on YouTubeFollow Us on InstagramFollow Us on E-mailFollow Us on Docs

Blog Series

  • Power Apps – Model Driven Apps
  • Power Apps – Canvas App
  • Power Pages
  • Power Automate
  • Power BI
  • AI Builder
  • Copilot
  • Azure OpenAI
  • Microsoft Teams
  • Dynamics 365 for Field Service

Recent Innovations

Translate Dynamics 365 Data in Real-Time using Azure AI Translator with our New App!

Summer 2025 Dynamics 365 Maps Release: Smarter Routing, Azure Maps, Canvas Apps & More!

How to Create Mailchimp Email Campaigns Directly from Dynamics 365 CRM!

Detect and Merge Dynamics 365 CRM Duplicate Records with New DeDupeD Features!

SharePoint Metadata – Enhance document searchability in Dynamics 365 CRM integration!

WhatsApp, Text SMS, and Live Chat Integration – Dynamics 365 Omnichannel suite by Inogic!

Recent Posts

  • Role-Based Access Control for Document Security in Dynamics 365 CRM!
  • How to Create and Modify a Segment in Customer Insights – Journeys Using the Web API
  • Dynamics 365 WhatsApp Integration: Trigger vs Segment Customer Journeys – Explained!
  • Add Process Mining Report in Power BI Workspace
  • Webinar: Copilot Agents in Action: Document Reading, Response Generation, and Email Drafting!

Archives

SiteLock
Copyright © 2025 Inogic. All Rights Reserved
Iconic One Theme | Powered by Wordpress