The Security Architecture of Microsoft Dynamics AX

Organizations across the world having chosen Microsoft Dynamics AX as their preferred choice of ERP ought to know what its security architecture is like. This piece of information will let them know that their choice of ERP will not let them down and will last the distance, which they expect it to.

The security architecture of MS Axapta comprises of Infrastructure Security and Application Security.

1. Active Directory Services configured in Native Mode. To get more details on the Active Directory User Topology as well as configuring Active Directory, it is suggested that Active Directory User Topology be referred to for guidance

2. Integrated Windows Authentication

3. A Perimeter Network with a Firewall for Internet-facing Enterprise Portal

4. Secured Servers. These are a highlight of sorts in the sense that many of them running the ERP demand specific security requirements.

Microsoft usually recommends that these servers be secured so that they are always running consistently. The company has also made some recommendations regarding its implementation and understanding, which have been detailed out nicely in the Microsoft Tech Net Security Center

1. Users of MS Axapta are not granted permissions directly. They have to seek them. Also, this is only applicable for Active Directory users. Users who are not part of the Active Directory cannot be added

2. Users of one of the finest ever Microsoft Business Solutions Axapta when added to a group are granted all the permissions assigned to that group. Those not assigned to groups cannot have access to the ERP. A single user can always be part of more than one group. The concerned user, will inherit the highest permission levels of two groups

3. AX features domains that are groups of company accounts. Domains make it easier to maintain user group security in case multiple companies happen to use the same AX ERP System and also have identical security needs. Domains also enable you to restrict permissions to user groups to a single company and also to set up user groups with permissions to data across various companies. It is to be noted that the domains feature demands that a separate license be used

4. There are Security Keys in AX that provide control access to menu items, forms, reports and fields within a form. These are disabled by default and can be set for user group/domain combinations. These security keys are enabled by default for only those administrator users who have a developer license

5. Table and Field Security allow changes to a table and also facilitate restrictions on access

6. The Application Security Architectural features of Dynamics AX also has record level security that allows to set permissions on rows in tables and also facilitates that access be restricted to certain sections of a table

Though these sound a little technical, it is important that they be known to a certain extent. It always pays to know the solution you work on just in case a situation arises tomorrow when the need of the hour is knowledge on security features of that particular solution in case a troubleshooting incident comes to the fore.