This is a post I wrote today for the Microsoft CRM Team MSDN Blog.
This post is CRM security 101, but I get asked this question fairly often, so it seems that there is some confusion about what the difference is between “Append” and “Append To” security permissions. I find this confusion comes from the similar sounding names of these permissions, and also because configuration of relationship security requires permissions to be applied to two separate entities—both sides of the relationship.
Let’s take the example of Accounts and Opportunities. In this relationship, “Accounts” is the parent and “Opportunities” is the child. There are multiple Opportunities per Account. Say a user needs to be able to relate Opportunities to Accounts, either through the Potential Customer lookup field on the Opportunity, or through the “Opportunities” navigation bar area on an account.
In this example, a user must have “Append” permissions on Opportunities (child) and “Append To” permissions on Accounts (parent). I think of it this way—I’m APPENDING the opportunity, and I’m APPENDING it TO the account.
The next consideration is what permission level the users should have. As with other permissions in Dynamics CRM, you can grant a role “User,” “Business Unit,” “Parent/Child Business Unit,” and “Organization” level security permissions for both append and append to. It is important to think through what records a user should be able to append, and to which records that user should be able to append those records.
In our example of Accounts and Opportunities, if a user should be able to associate any Opportunity with any Account, you would give that user’s role Organization level Append permissions on Opportunities and Organization level Append To permissions on Accounts. Easy enough. What if you want to give a user permission to associate only opportunities that they own to any account in their business unit? In this case you would give that user’s security role “User” level Append permissions on Opportunities and “Business Unit” level Append To permissions on Accounts.
Now that you have the relationship permissions set, there is one more wrinkle you need to consider. If you want a user to be able to create related records from a parent, the user needs to have write permissions for the parent entity. For example, if you want a user to click the opportunities navigation bar link from an Account and create a related opportunity, that user’s security role will need to have write permission for Accounts. If they don’t, the “new” button won’t be available from the Account. They would be able to go to the Opportunities entity and create a new opportunity and relate it to the Account, but without write permissions on Accounts they will not be able to create related records from an Account.
Great post as always Joel! This is one of the most frequent questions I get from my clients when discussing security roles. I'll be sure to direct them to this blog in the future!
Posted by: Doug - PO | November 19, 2009 at 09:14 AM
I wanted to let the readers know about FranklinCovey CRM, they have 3 editions with several different feature sets. They all feature the FranklinCovey Planning Methodology in a planner like interface that combines Tasks, Calendar, Notes and Email from the Home Page. Powerful Weekly Planning Tools will assist in prioritizing your most important tasks and goals. Great Question, have you heard about Franklin Covey 's Business CRM its not Free but close to it .
The Contact Management tools will keep you organized. Team collaboration and Task delegation features will take your teams effectiveness to new heights. With all that said, it provides CRM functionality with the ability to configure the CRM to track your business process's. It's technology with FranklinCovey’s proven methodology that users are able to quickly adopt and use to prioritize their daily activities. - As you are probably finding out there are numerous hosted CRM systems that provide you with a variety of features and services which may provide a full solution or a partial solution for every business.
The following link will allow you to create a VIP account for a test drive without having to enter a creditcard . Let me know if I can answer any additional questions about becoming and affiliate . You can earn 10% to 30% a month as an affiliate I have heard there are more than 190 CRM solutions on the market today— (which I have never validated ).
Cheers,
A CRM technology which integrates Business Process Management (BPM) through easy to define automated engine should be a serious consideration when looking for a solution. Its your definition and allows you collaborate with decision makers in the process ie. customers, partners, affiliates, investors, etc.
Mike
More importantly you build the process and the application does the work and keeps you and your team on track.
What else I found was that to be a great CRM / technology it needs to have Productivity Methodology applied to it. ie FranklinCovey's time tested millions of customers approve. Tracking your Goals, Values and Priorities you get more done in both your personal life and professional life. This will not only empower you but your team as well . You have to have good proven Methodology with Technology for your team to know what their highest priorities are for the day, week and month without having to ask :)
With that said, you should look @ FranklinCovey 's CRM PlanPlusOnline for business's.
Franklin Covey is a worldwide leader in organization effectiveness. It's technology with Franklin Covey’s proven productivity methodology that users are able to quickly adopt and use to prioritize their tasks, mission statement, values, goals, top priorities, and daily activities.
You combine that with typical CRM applications such as Sales, Support, Marketing, and Projects, and you end up with a solid online application that is customizable for any business process, including non-profit companies.
The following link will allow you to create a VIP account for a test drive without having to enter a credit card.
Cheers,
Mike
Links:
http://tinyurl.com/franklincovey-software
http://www.planplusonline.com
http://www.completexrm.com
Posted by: mike morgan | December 01, 2009 at 11:57 AM
I liked the comparison and nice differenced found out, thanks for sharing this with us, liked reading the blog, great job, keep it up.
Posted by: Mio Navman Spirit S300 | December 12, 2009 at 03:33 AM