In this webinar, our experts showcase a variety of demo use cases of how different components of the...
If you are a Microsoft Dynamics CRM Online system administrator, you probably know that initial CRM user setup is performed in the Office 365 portal and then configured within CRM. But you may not know that you can use the Security Groups feature in the Office 365 Portal to enable or disable CRM access to custom groups of users you can create.
This feature can be useful for different scenarios, including:
There is actually a default security group that is pre-configured for Office 365 called System Administrators. This group includes all Office 365 users with global administrator rights.
Here's how it works. You must have global administrator rights in the Office 365 Portal. If you do, log in to the Office 365 Portal with your credentials to the home page. Once logged in, do the following:
For this scenario, we will call our group Testing Users. This group will comprise of users that will have access to the CRM environment for testing new solutions. To create the group, do the following:
Voilà! Your new security group is created. Now, let's use it to limit access to Dynamics CRM Online to our Testing Users. Go to the Office 365 CRM Online Admin Center by first clicking on the Admin dropdown on the Office 365 navigation toolbar, then selecting CRM from the dropdown list. This will open the CRM configuration page.
Next, select the CRM Online instance (if you have more than one) you want to edit and select the Edit button.
In the edit screen in the security settings section, use the search tool to look up your new Testing Users security group and select it. Click Save to save your selection and return to the main page in the Admin Center.
Then, click Save on the Admin Center page to save your CRM Online instance security settings.
That’s it! As long as the users in your group are licensed for CRM Online, access to the CRM Online instance will be restricted to the users in the security group. Other licensed users inside of CRM Online that are not in the security group will be disabled. To restore access, simply go back to the CRM Online Admin Center for that instance and clear the group name from the security settings.
Happy CRM'ing!
Thank you for your post.
Does it only work for the user member belong to the security group directly(don’t work for the group’s group)?
I add some groups(which contain some users) to the security group.But the user can’t login into the sandbox.When the user belong to the security group,it works well.
Correct. Nested groups is currently NOT supported, only direct group membership. We hope this will change in the future as we have seen many clients want support for nested groups.