In this digital world, security is more important than ever. It becomes a mandate to take measures and design systems to securely protect and safeguard information (business and personal data). Database security is more than just important: it is essential to any company with any online component. Sufficient database security prevents data from being lost or compromised, which may have severe ramifications for the company both in terms of finances and reputation.
Data visibility should be role tailored. Management should be able to see the financial data, whereas a shipper should only be able to see the shipment related information. There is no need for a shipper to have access to the prices or G/L accounts. This is a severe concern for business owners these days, and there is a business need to avoid access to confidential information in online ERP systems.
Microsoft Dynamics 365 Business Central experts suggest that, by following these simple business best practices, we can have better security:
1. Define Roles before assigning the permission sets. Which roles are trusted and which are untrusted, and what permissions have you want to give to those roles?
2. Wherever possible, assign a role to a group rather than individual users
3. If a restrictive role is assigned to a group, check that the group does not contain the Administrator user or other users with administrative privileges. Otherwise, you might unintentionally restrict administrators’ privileges in the parts of the inventory hierarchy where you have assigned that group the restrictive role
4. Have default permission sets for groups. Use the principle of least privilege and give roles only the permissions that they absolutely need.
Due to the availability of data, confidentiality is lost in online ERP systems.
Microsoft Dynamics 365 Business Central deals with this issue and can restrict access to tables, pages and even at the field level. To classify the fields that hold sensitive or personal data, a Microsoft partner can set the Data Classification property on fields. To know more about this feature, please join our upcoming webinars.