Howdy, Stranger!
Categories
- All Categories
- 73 General
- 73 Announcements
- 66.7K Microsoft Dynamics NAV
- 18.7K NAV Three Tier
- 38.4K NAV/Navision Classic Client
- 3.6K Navision Attain
- 2.4K Navision Financials
- 115 Navision DOS
- 854 Navision e-Commerce
- 1K NAV Tips & Tricks
- 772 NAV Dutch speaking only
- 615 NAV Courses, Exams & Certification
- 2K Microsoft Dynamics-Other
- 1.5K Dynamics AX
- 326 Dynamics CRM
- 110 Dynamics GP
- 10 Dynamics SL
- 1.5K Other
- 994 SQL General
- 384 SQL Performance
- 34 SQL Tips & Tricks
- 34 Design Patterns (General & Best Practices)
- Architectural Patterns
- 10 Design Patterns
- 5 Implementation Patterns
- 53 3rd Party Products, Services & Events
- 1.7K General
- 1.1K General Chat
- 1.6K Website
- 79 Testing
- 1.2K Download section
- 23 How Tos section
- 260 Feedback
- 12 NAV TechDays 2013 Sessions
- 13 NAV TechDays 2012 Sessions
Restrict access to Sales Invoicing
slmaluwa
Member Posts: 366
Hi there
Here is an interesting new requirement and hope those was solved by those experts earlier in their projects.
The new requirement is we need to have the Invoicing rights from few users. They can enter Order and ship the items. But, must NOT be able Invoice. Same applied to Return Orders. Only Receive must be enabled.
I checked the permission setup and feel that this is not possible. Thinking about adding a field in the User Setup table and do the validation.
Can you share some ideas on which code unit will be most appropriate to have this control?
Or any other places?
Here is an interesting new requirement and hope those was solved by those experts earlier in their projects.
The new requirement is we need to have the Invoicing rights from few users. They can enter Order and ship the items. But, must NOT be able Invoice. Same applied to Return Orders. Only Receive must be enabled.
I checked the permission setup and feel that this is not possible. Thinking about adding a field in the User Setup table and do the validation.
Can you share some ideas on which code unit will be most appropriate to have this control?
-
80 Sales-Post
81 Sales-Post (Yes/No)
82 Sales-Post + Print
Or any other places?
"A bove maiore discit arare minor"-"From the old ox, the young one learns to plow."
0
Answers
Did you really check this? I think you need to go b
ack and re look at this, it is amongst the most basic of security setup functions, and if you plan to offer your client professional services, then you need to learn about security.
If you really don't know how to do this then you should be speaking with someone senior in your company and have them train you in this. I know forums are a place to get help, but that does not mean you can just bypass basic training, and go straight out and implement Navision. You can't plan simply to use forums to do your implementations for you.
Have you been to basic Navision training, and are you certified to setup security?
RIS Plus, LLC
Thank you for the reply. I am certified on Installation and Configuration and on my way to complete the Development. Already completed Development I.
As you try to say, my whole idea is wrong or a kind of "re-inventing the wheel" thing.
I tried hard on this security setup to remove the invoice rights. As you say, It may be a basic setup but I AM seems to very very weak on this part. It may be either the previous implementors may have messed up the whole security setup or I do not fully understand it.
I tried removing the TableData rights (all) to Sales Invoice Header and line table (etc) and the user was still able to post an invoice.
Since there are no seniors (who can help me on this) in our company and re-training going to take time, can you shed some valuable ideas on how to have this control using permissions?
By the way, it is a NAV 4 SP3 DB
Firstly add a field to user setup call it "Allow Sales Invoice" .
You can modify in codeunit 81, by displaying different selection options based on permission.
This will stop allowing to post invoices only from sales order and sales return form.
But if there is any code calling sales post directly it will not check this permission.
so modify codeunit 80 just after ship,invoice and receive booleans are assigned.
If invoice = true then begin
usersetup.get(userid);
if usersetup."allow sales invoice" = false then
error('You do not have permission to invoice');
end;
hope this is what you want.
Most definitely yes. The advice I can give you is to leave the company and find a new job.
How can a company think it will sell Navision systems if it has no senior consultants.
Also if you have no seniors in your company, and you don't know how to setup security, how did you get certified.
It wasn't a question... it was me handing out rope. :whistle:
Oh, now I understand the point. Firstly, I am not working for a partner but for a customer who has solution developer license.
A partner company was helping us earlier and now they are limited with supplying licenses and granules from MS. We are on our own!
Getting certified was never a problem as the training was offered by training center and local MS office and my dedication to the subject.
I am still willing to learn from you all!
Thank you lakshmivalluru
This what I decided earlier and posted the original post for further advice. But, the NAV Guru's here suggest that this can be done using Permissions and I am trying to learn that path too!.
If the user has no permission ot write to table 112 and 113 then they will not be able to post an invoice.
Just be careful, it may seem that you are going to save a lot of money not having a partner to support you, and in some instances there is a good case for an end user supporting themselves, but to do so you need someone in house (or access to someone) that can help you out when you get stuck like this.
Again I would like to say, preventing a user from posting an invoice is a fairly basic function, so I can't see how you got certified if you don't know this.
Please don't leave your company dependent on MiBuSo as its support desk.
Now, David. this is what I mentioned in the second post. I tried setting the permission for those tables and the user was still be able to invoice. Your suggestion made me to think that there may be other ROLES which has this permission and we have to check each and every one of them now. Thank you!
On the other hand, our company is not dependent of MiBuSo though we use it fairly.
Why MiBuSo and Dynamics User forums exists? I think the whole purpose is to share the ideas and experiences of each other. This will be more beneficial to everyone!
That's not how it appears. This is something that would normally be done by your partner. Setting up security is a complex beast, and you are stuck with one of the more basic issues because you have done something wrong somewhere. This solution works, and you need your partner to come in and figure out where YOU screwed it up.
Sharing ideas and experiences is one thing, but doing your implementation using forums is NOT (imho) what forums are about.
You cannot deny though that it is the en vogue trend of the last 18 months!
And I might be a bit subtle, but i think between the lines you can read that I am not too happy about it.
The thing is I should be really happy, because I make my living fixing up these train wrecks, and now its like someone just removed all the signals from all the train tracks everywhere and just set the trains off. So I am sitting here thinking "there are going to be a lot of train wrecks in the next couple of years, this is bad a lot of people are going to be in a lot of trouble" and on the other hand Thinking "there are going to be a lot of train wrecks in the next couple of years, I make money fixing broken trains, this is good news."
Deep down I really do not want to see Navision go down this road of destruction, but I really don't think its stopable.
I agree with everything you say, the future holds dreadful implementations, a brand name of poor product and delivery, and everyone involved with NAV being tarred with a similar brush. Lets hope we keep enough good ones going to keep the faith, because actually it is bloody good product when implemented correctly to the needs of the business
RIS Plus, LLC
http://dynamicsuser.net/blogs/alexchow/ ... ndrum.aspx
AP Commerce, Inc. = where I work
Getting Started with Dynamics NAV 2013 Application Development = my book
Implementing Microsoft Dynamics NAV - 3rd Edition = my 2nd book
As David mentioned, we solved this issue with setting up the permission. We actually copied all permission settings of each ROLES to Excel and manually compared to make sure there is no conflicting permissions.
Created separate set of roles for each departments (user) based on Cronus style.
As you said, it is a basic setup indeed and thank you again for pointing it out. By the way, we still feel we may get an expert's help as and when we are really stuck (no help available from other sources) than paying $$$$$ to partner who does very little at the end of the day (some time we may simply cannot afford to pay the fee they are asking to create even a small report). We keep the partner only to supply software and granules.
Then again, this may be due to the bad experiences customers like my company get from BAD partners.
Wish the current and future members will benefit from these posts in someway!
Wow!! Cool deal! Can I be your MS partner?
AP Commerce, Inc. = where I work
Getting Started with Dynamics NAV 2013 Application Development = my book
Implementing Microsoft Dynamics NAV - 3rd Edition = my 2nd book