Howdy, Stranger!
Categories
- All Categories
- 73 General
- 73 Announcements
- 66.6K Microsoft Dynamics NAV
- 18.7K NAV Three Tier
- 38.4K NAV/Navision Classic Client
- 3.6K Navision Attain
- 2.4K Navision Financials
- 115 Navision DOS
- 854 Navision e-Commerce
- 1K NAV Tips & Tricks
- 772 NAV Dutch speaking only
- 615 NAV Courses, Exams & Certification
- 2K Microsoft Dynamics-Other
- 1.5K Dynamics AX
- 300 Dynamics CRM
- 109 Dynamics GP
- 10 Dynamics SL
- 1.5K Other
- 993 SQL General
- 384 SQL Performance
- 34 SQL Tips & Tricks
- 34 Design Patterns (General & Best Practices)
- Architectural Patterns
- 10 Design Patterns
- 5 Implementation Patterns
- 53 3rd Party Products, Services & Events
- 1.7K General
- 1.1K General Chat
- 1.6K Website
- 79 Testing
- 1.2K Download section
- 23 How Tos section
- 259 Feedback
- 12 NAV TechDays 2013 Sessions
- 13 NAV TechDays 2012 Sessions
[SOLVED] User card page - You have not been granted permission to perform current activity
Tomigs
Member Posts: 86
Hello,
I read that the session table can only be accessed from NAV if you are SUPER.
(https://community.dynamics.com/nav/f/34/t/141815?pi51428=1#responses)
I wonder if something similar can be the case for accessing the user card?
My scenario is in NAV2013R2.
I go to the users list page and from there I try to access another user's card. Then I get the error:
You have not been granted permission to perform the current activity.
Page Edit - User Card must close.
The user is not SUPER, but among others it has the BASIC that includes read permission to the user table (2000000120). It is sysadmin in SQL.
I debug it and it cracks in codeunit 9801 Identity Management, in the following function:
GetWebServiceExpiryDate(UserSecurityID : GUID) ExpiryDate : DateTime
IF NOT UserAccountHelper.TryGetWebServicesKey(UserSecurityID,Key,ExpiryDate) THEN
ERROR(GETLASTERRORTEXT);
but I don't know what happens inside that TryGetWebServicesKey function.
Any advice on this?
Thanks,
Tomas
I read that the session table can only be accessed from NAV if you are SUPER.
(https://community.dynamics.com/nav/f/34/t/141815?pi51428=1#responses)
I wonder if something similar can be the case for accessing the user card?
My scenario is in NAV2013R2.
I go to the users list page and from there I try to access another user's card. Then I get the error:
You have not been granted permission to perform the current activity.
Page Edit - User Card must close.
The user is not SUPER, but among others it has the BASIC that includes read permission to the user table (2000000120). It is sysadmin in SQL.
I debug it and it cracks in codeunit 9801 Identity Management, in the following function:
GetWebServiceExpiryDate(UserSecurityID : GUID) ExpiryDate : DateTime
IF NOT UserAccountHelper.TryGetWebServicesKey(UserSecurityID,Key,ExpiryDate) THEN
ERROR(GETLASTERRORTEXT);
but I don't know what happens inside that TryGetWebServicesKey function.
Any advice on this?
Thanks,
Tomas
0
Answers
We interact for the future of Code.
Thank you for your answer.
If you are referring to the NAV permission set that the user has, yes it had insert and modify permissions in that table. In fact I tried using a permission set "LikeSuper" that gives permission to all table data (0), but still the same result.
Lacking other solution, we have left it as SUPER right now.
Thanks,
Tomas
I have the same problem.
Did you solve it? and could you please share with me the solution?
oh, sorry, i saw your solution is "have left it as SUPER right now."
Yes, I haven't done any progress on this. Just left it as SUPER.
Regards,
Tomas
We may have finally found a solution for this issue using the SECURITY permission set.
This permission came with older versions of NAV, but it does not come in the default standard permission sets for NAV2013 so we had to create it (discussed here http://forum.mibuso.com/discussion/63546).
Adding this permission set to a non SUPER user, seems to work as we wanted to:
- Allows the user to edit non-SUPER users.
- Allows the user to edit his own permissions but it does not let him add the SUPER permission to himself.
- It does not allow the user to edit SUPER users.
For the permissions included, I just tried to adapt the NAV2009 standard Security permissions:
At SQL level the user is sysadmin, but haven't tested it with public. It might work.
Regards,
Tomas
I can confirm the above works on NAV 2016 with the addition of Table Data 2000000121 "User Property" added to the SECURITY permission set.
User does not need to be sysadmin in SQL.
When assigning the SECURITY permission set to a user, you cannot apply a company filter.
Cheers,
Dean.