D365FO Security Myth: Segregation of Duties Can Be Done at the Duty Level
This article discusses the myth that segregation of duties (SOD) can be done at the duty level within Dynamics 365 for Finance & Operations (D365FO) and does not need to be done at a securable object level. The article explains what segregation of duties is and the potential risks involved. It also explores the functionality offered by D365FO for segregation of duties, including setting up SOD rules and verifying compliance of user-role assignments. However, the article highlights some gaps and shortcomings in the native functionality, such as the lack of an out-of-the-box SOD ruleset and the analysis being done at the duty level, which can result in false positive and false negative results. The article concludes by discussing the need for organizations to analyze risks at the securable object level and provides steps for performing an object level segregation of duties analysis.
Article 1m
Login now to access my digest by 365.Training
Learn how my digest works
Features
- Articles, blogs, podcasts, training, and videos
- Quick read TL;DRs for each item
- Advanced filtering to prioritize what you care about
- Quick views to isolate what you are looking for right now
- Save your favorite items
- Share your favorites
- Snooze items you want to revisit when you have more time