RTC Roles and Permissions

since2002

I have struggled for years trying to use the standard Navision roles and the permissions to satisfy corporate auditors with system security. I spent countless hours adding tables to the ALL group to get users through their job functions. Now with RTC (2009) I am finding tables that are in NO role. All the MY and CUE tables in the 9000 range seem to be missing. The table 200000008 Page Personalization seemed to be missing. Without it any report that runs bombs out and knocks the user out of Nav. I would think giving someone the INVT-ITEM/BOM EDIT and few other roles would allow someone to enter items. That becomes a endless process of "You do not have permission to the Kit sales Line table", "you do have permission to the Service Line Table". These are apps we don't use or have the license to yet I am forced to give the user other ROLES that I should not have to. Example 2. We have 5 users who's sole job is to enter Bank Deposits but giving them the BanK Deposit Edit and BANK DEPOSIT POST comes no where near giving them the ability to do their jobs. Among the errors, you do not have permission to tables 824 to 830 DO Payments tables. Again these tables where not in any role and are not used anyway. The auditor will not accept the SUPER(DATA) role. Someone in another topic suggested giving BASIC role. That to me looks like the SUPER(DATA) clone.
Any one else having these issues and is it better in 2013? I'm really not generally a complainer and accept bugs that arise with new versions but this area seems to be something that has been a problem for a long time and getting a little worse.

Kishorm

This is something you need to do as part of the upgrade, please see page 21/22 of the UpgradingNAV2013.pdf document...

To upgrade roles and permissions

1. In the Microsoft Dynamics NAV Development Environment, open Object Designer.
2. Run XMLport 104001, Import/Export Roles, to export the roles currently defined in the database into a file.
3. Run XMLport 104002, Import/Export Permissions, to export the permissions currently defined in the database into a file.
4. If the customer has changed the Read/Write/Modify/Delete/Execute rights for any of the standard permissions, or customized roles in any way, you must merge these changes manually with the roles and permissions supplied with Microsoft Dynamics NAV 2013.
Microsoft Dynamics NAV 2013 includes updated roles and permissions. Two text files may be provid-ed by your local Microsoft country/region office with the local upgrade toolkit. If these two text files are not included, use XMLport 104001, Import/Export Roles, and 104002, Import/Export Permissions to export the new standard roles and permissions from the CRONUS demonstration company on the Microsoft Dynamics NAV 2013 media.
Merge the roles and permissions exported from the customer database with the roles and permis-sions in the files provided by your local Microsoft country/region office or exported from the Mi-crosoft Dynamics NAV 2013 CRONUS demonstration company.
5. Run page 9802, Permission Sets, and delete all permission sets except the SUPER permission set (re-member: permission set = role).
6. Run page 104002, Upgrade - New Version.
7. Choose Import Roles.
8. Import the user roles from the merged role text file that you created in step 4.
9. Choose Import Permissions.
10. Import the permissions from the merged permission text file that you created in step 4.
11. When you have finished the roles and permissions upgrade, verify that users can perform all their tasks without any permission errors.