What is Hierarchy Security Model in Dynamic 365 CRM

Microsoft Dynamic CRM has introduced additional hierarchy security model that can be use with existing security model that are business units, security roles, sharing, and teams. It offers a more granular access to records for an organization and helps to bring the maintenance costs down. There are two types of it, lets look at them in details.

In Manager hierarchy, a manager must be within the same business unit, or in the parent business unit, to have access to the data.

Manager’s and the report’s relationship are established by using the Manager field on the system user entity.

Note: If a direct report has deeper security access to an entity than their manager, the manager may not able to see all the records that the direct report has access to.

Position hierarchy allows data access across business units. It is not based on the direct reporting structure, like the Manager hierarchy.

A user can be tagged only with one position in each hierarchy, however, a position can be used for multiple users.

Users at the higher positions in the hierarchy have access to the data of the users at the lower positions, in the direct ancestor path.

With the Position hierarchy security, a user at a higher position has access to the records owned by a lower position user or by the team that a user is a member of, and to the records that are directly shared to the user or the team that a user is a member of.

More on Sales life cycle in Dynamic 365 CRM