Your organization has two business units: Sales and Operations.
The sales unit includes three units: East, West, and Central.
The Operations unit has two units: Accounting and Engineering.
The Sales unit manager has Read Account privilege access set to Parent: Child Business Units level.
The manager in the Accounting unit has Read Account privilege access set to the Organization level.
And an engineering manager in the Operations unit has Read Account privilege access set to the Business unit level.
Please select all correct statements about security role privileges for each of the managers.
Click on the arrows to vote for the correct answer
A. B. C. D. E.Correct Answers: B, D and E
The Business unit security model is the basis for the Dataverse security.
The model controls access to the data using security roles, teams, and users.
By linking all of them together, you are getting a role-based security model.
By default, the Organization is a top-level of a business unit hierarchy.
Each business unit has a default team.
You cannot change or delete the default team.
You must assign every user to only one business unit.
The business unit security model uses security roles to assign them to the users or teams.
A team also can consist of users from different business units.
Option B is correct because the accounting manager has the Organization privilege access level.
This role can view all accounts in all business units of the organization.
Option D is correct because the sales manager in the Sales unit has the Parent: Child Business Units privilege access level.
This role can view all accounts in the Sales unit and all child, grandchild, etc.
business units of the Sales unit.
Option E is correct because the accounting manager has the Organization privilege access level.
This role can view all accounts in all business units of the organization.
Option A is incorrect because the engineering manager belongs to the Operations unit with the Business unit level privilege access.
This security role can view all accounts owned by the Operations unit users only with no depth of child or grandchild units.
The engineering manager cannot view the accounts owned by the users in the Sales unit.
Option C is incorrect because the engineering manager belongs to the Operations unit with the Business unit level privilege access.
This security role can view all accounts owned by the Operations unit users only with no depth of child or grandchild units.
The engineering manager cannot view the accounts owned by the users in the Engineering unit.
For more information about Dataverse business units security, please visit the below URLs:
The scenario describes a hierarchical structure of business units within an organization, each with different levels of access to the "Account" entity in Microsoft Power Platform. Based on this information, we can determine the correct statements about security role privileges for each manager.
A. The engineering manager can view all accounts owned by the users in the Sales unit. This statement is incorrect. The engineering manager has Read Account privilege access set to the Business unit level, which means they can only view accounts owned by users within the Operations unit, not the Sales unit.
B. The accounting manager can view all accounts owned by the users in the West unit. This statement is incorrect. The accounting manager has Read Account privilege access set to the Organization level, which means they can view accounts owned by users in any business unit within the organization, not just the West unit.
C. The engineering manager can view all accounts owned by the users in the Engineering unit. This statement is correct. The engineering manager has Read Account privilege access set to the Business unit level, which means they can view accounts owned by users within the Engineering unit, which is part of the Operations unit.
D. The sales manager can view all accounts owned by the users in the Sales unit and sub-units. This statement is correct. The sales unit manager has Read Account privilege access set to Parent: Child Business Units level, which means they can view accounts owned by users within the Sales unit and any sub-units, such as East, West, and Central.
E. The accounting manager can view all accounts owned by the users in the Engineering unit. This statement is incorrect. The accounting manager has Read Account privilege access set to the Organization level, which means they can view accounts owned by users in any business unit within the organization, but not necessarily within the Engineering unit specifically.
In summary, the correct statements about security role privileges for each manager are: