Microsoft Dynamics AX Connector: Security

Owned by Mateusz Lorc
Last updated: Jul 27, 2018
1 min read

Authentication and Identification

The connector relies on the default Locator Active Directory Authentication Plugin for authentication and MicrosoftDynamicsAX Identification Plugin to get the users' groups from MicrosoftDynamicsAX. The MicrosoftDynamicsAX Identification Plugin matches the Active Directory domain\username with 'name' column in table 'userinfo' in the MicrosoftDynamicsAX database.

Identification

Scope:

  • MicrosoftDynamicsAX_@CompanyId
  • MicrosoftDynamicsAX - used when domain security is enabled

Tokens: GroupId

Document Security

Scope:

  • MicrosoftDynamicsAX_@CompanyId
  • MicrosoftDynamicsAX - used when domain security is enabled

Tokens: GroupId


MicrosoftDynamicsAX connector uses SecurityKey and table level security. If the DomainId column in AccessRightsList table is not null then it uses default (MicrosoftDynamicsAX) scope and the token is added only when document belongs to company in that domain. Otherwise the scope is MicrosoftDynamicsAX_@CompanyId. @CompanyId is the company's identificator in which current document belongs.

ayfie