Hierarchy SM introduced in MSCRM 2015
The hierarchy security model is an extension to the existing Microsoft Dynamics CRM security models that use business units, security roles, sharing, and teams. It can be used in conjunction with all other existing security models. This new change will make it possible for managers to see records for the people under them.
This model leads a direct manager of a user to Read, Update, Append, Append To and only Read privileges to the manager of a direct manager of subordinate activities.
Hierarchy security model has two models:
- Manager hierarchy
- Position hierarchy
Navigate to Settings -> Security and select Hierarchy security
- Choose Hierarchy security and enable hierarchy modeling
- Choose manager hierarchy or custom position hierarchy.
Manager Hierarchy:
With the Manager hierarchy, a manager must be within the same business unit as the report, or in the parent business unit of the report’s business unit, to have access to the report’s data.
Custom Position Hierarchy:
The Position hierarchy allows data access across business units. A user doesn’t have to be an actual manager of another user to access user’s data. As an administrator, you will define various job positions in the organization and arrange them in the Position hierarchy.
Hierarchy Depth:
- The amount of data accessible can be limited with the depth. Depth is used to limit how many levels deep a manager has Read-only access to the data of their reports.
In hierarchy security all the system entitles are enabled and end user can exclude the entities that don’t want to be included in the hierarchy security.
After selecting Manager Hierarchy a user record can be viewed by opening the users list and then select view hierarchy
This window shows the relationship of the manager with the other users in the same business unit.
In the below scenario a user1 can have direct access to user2 i.e (can have read, write, append, append to) permissions.
In the below scenario user2 can have direct access to user3, but user1 can only have a read permission to this user3.
![clip_image008[1]](http://blog.mtccrm.com/Media/Default/Windows-Live-Writer/e6c6c4b5a245_100AB/clip_image008%5b1%5d.jpg "clip_image008[1]")
Navigate back to the hierarchy security and enable custom position hierarchy.
To create a Position hierarchy:
- Go to setting - > security
- Enable custom position hierarchy.
- Choose Positions
For each position, provide the name of the position, the parent of the position. Add users to this position by using the lookup field. Below is the example of Position hierarchy with the active positions.
Select any position under active positions and click on view hierarchy.
