Options

permission to user not working

ahmedbaahmedba Member Posts: 424
Hi guys i work in dynamic navision 5.0 in navigation pane menu warehouse department - planing and execution - item then press f5 or list from menu form i need to create user see specified items only as example

item list (form)as following

no description item category

a explain1 sp

b explain2 sp

c explain3 fg

d explain4 fg

my question is i need to create two users

first can see sp and not see fg.

and second can see fg but cannot see sp.


thanks

Comments

  • Options
    SogSog Member Posts: 1,023
    why should visiblity be based on item category.
    responsibility centers and or locations are usually used for these kind of filters.
    |Pressing F1 is so much faster than opening your browser|
    |To-Increase|
  • Options
    ahmedbaahmedba Member Posts: 424
    I use security filter but not working i create role then assign this permission to it as following:

    Object Type Object ID Object Name Read Permission Insert Permission Modify Permission Delete Permission Execute Permission Security Filter
    Table Data 0 Yes Yes Yes Yes Yes
    Table Data 27 Item Yes Yes Yes Yes Yes Item: Item Category Code=SP
    Table 0 Yes Yes Yes Yes Yes
    Form 0 Yes Yes Yes Yes Yes
    Report 0 Yes Yes Yes Yes Yes
    Dataport 0 Yes Yes Yes Yes Yes
    Codeunit 0 Yes Yes Yes Yes Yes
    XMLport 0 Yes Yes Yes Yes Yes
    MenuSuite 0 Yes Yes Yes Yes Yes
    Page 0 Yes Yes Yes Yes Yes
    System 0 Yes Yes Yes Yes Yes

    then i make asynchronous login but not work why not work
    can any one help me
    thanks
  • Options
    SogSog Member Posts: 1,023
    Table Data 0 Yes Yes Yes Yes Yes
    Table Data 27 Item Yes Yes Yes Yes Yes Item: Item Category Code=SP

    Thats why.
    NAV won't care about the security filter if you give permissions to all tables (including 27) with no security filter.

    The following rules should be in your mind if you assign permissions. Yes > unspecified.
    Which means that when a yes is found, it has rights.
    If a double yes is found, its yes.
    If a yes and a yes with a filter is found, its yes (without the filter)
    |Pressing F1 is so much faster than opening your browser|
    |To-Increase|
  • Options
    ahmedbaahmedba Member Posts: 424
    I make as you say remove table data with line 0
    but error message display tell me you don't have permission to read object table.
    please i try this more time if you know solving the problem send me solving by details if possible
    thanks
  • Options
    mohana_cse06mohana_cse06 Member Posts: 5,504
    Just like table data 27, you need to add for Object table also..
  • Options
    ahmedbaahmedba Member Posts: 424
    1-Now i create one roll this role name test55 as following
    Object Type Object ID Object Name Read Permission Insert Permission Modify Permission Delete Permission Execute Permission Security Filter
    Table Data 27 Item Yes Yes Yes Yes Yes Item: Item Category Code=SP
    Table 27 Item Yes Yes Yes Yes Yes
    2-then assign to the user i created as following rolls
    all
    test55
    then i get this message then also i face more error you don't have permission to read profile table
    please if any one know please tell me
  • Options
    mohana_cse06mohana_cse06 Member Posts: 5,504
    Check the base role ALL in NAV2009R2 and create the same role and assign both ALL and test55

    Remove table 27 line in test55
  • Options
    SogSog Member Posts: 1,023
    No Mohanna that won't work either.
    rights on object 0 means that it applies for every number.
    If you need alternate rights on 1 object. you'll have to remove the 0 line and replace it with a line for each number (aka 3 to 9999999) meaning hundreds or thousands of extra lines.
    |Pressing F1 is so much faster than opening your browser|
    |To-Increase|
  • Options
    ahmedbaahmedba Member Posts: 424
    Please i make as you tell me but not work the version of nav is 2009 r2 can you make this to me by team viewer please help me based on what you need.
    what i make is create user then assign two roles
    all(not change any thing in it)
    test55(have table data item with security filter)
    then i make asynchronous login
    but this user when i open navision again by this user
    it give me message error you don't have permission to read profile table
    please contact system administrator
  • Options
    mohana_cse06mohana_cse06 Member Posts: 5,504
    Sog wrote:
    No Mohanna that won't work either.
    rights on object 0 means that it applies for every number.
    If you need alternate rights on 1 object. you'll have to remove the 0 line and replace it with a line for each number (aka 3 to 9999999) meaning hundreds or thousands of extra lines.
    I didnt mention to create rights for Object 0?
    There is a misunderstanding..
    Can you check again please?
  • Options
    ahmedbaahmedba Member Posts: 424
    Please i m sorry but forgive me can you tell me what is meaning of object 0 what i understand is remove all role then i leave the test55 role and if i leave test 55 role what should it content have.
  • Options
    ahmedbaahmedba Member Posts: 424
    Let me clear to you one point you must add (all) role because if you make object1 only meaning no read to all table in database meaning when i open with this user again it will give me error you don't have permission to read object table or table profile.
  • Options
    ahmedbaahmedba Member Posts: 424
    Now what i understood i make table data item 27 then security filter without select table data 0
    but i make this already when i open with this user it give me error you dont have permission to read object table or profile table
  • Options
    SogSog Member Posts: 1,023
    Sog wrote:
    No Mohanna that won't work either.
    rights on object 0 means that it applies for every number.
    If you need alternate rights on 1 object. you'll have to remove the 0 line and replace it with a line for each number (aka 3 to 9999999) meaning hundreds or thousands of extra lines.
    I didnt mention to create rights for Object 0?
    There is a misunderstanding..
    Can you check again please?

    Sorry, my bad. I assumed the role all had the same permission.
    |Pressing F1 is so much faster than opening your browser|
    |To-Increase|
  • Options
    mohana_cse06mohana_cse06 Member Posts: 5,504
    Sog wrote:
    Sorry, my bad. I assumed the role all had the same permission.
    No Probs. :thumbsup:

    So ALL Permission with test55 (only with Tabledata 27 and security filter) should work, right?
  • Options
    ahmedbaahmedba Member Posts: 424
    OK thanks you but i have small problem when i make two groups per item category not accept
    how i make it accept more item.
    example
    user a
    i need to make this user see more item category like sp,flsh,flash
    when i select all both last one it come automatically to all
    how i make item category code accept more items
    thanks
  • Options
    ahmedbaahmedba Member Posts: 424
    solving problem is make role name (test55) have security filter as following
    table data 27 item yes yes yes item category code=sp (what you need)
    then add (all) role but must (all ) role not have
    table data 0
    because this will cancel what you will make in role test55
    and must (all ) role have all tables data names and give all permission to read if you need more permission to specified tables you can add but must make read to all data table without to add
    data table item 27 because this will cancel what i tell this before and this step to avoid message error you don't have permission to read profile table or any table

    then assign this roles to user what you need then make asynchronous login to user that will login in next time
    thanks
Sign In or Register to comment.