MS CRM Portal Security : Web Roles
Web Role is given to Portal Contact login user to get access of Portal contents. Portal user can have multiple Web Role associated.
When Portal is setup then by default three Web Roles will be created automatically.
- Administrator
- Anonymous User
- Authenticated User
We can update the configuration to these web roles any time. Let understand these Web Roles first.
Administrator: Usually this web role we use to give higher privilege. Any web page, web links etc. we create we can add Administrator web role just to give all access to admin (It is totally up to us what level we want to provide access.)
By default Authenticated Users Role & Anonymous Users Role are set to No.
When Authenticated Users Role is set to Yes then when any portal user login to Portal they they automatically get this role assigned.
When Anonymous Users Role is set to Yes then any one who is browsing the portal will get this role assigned automatically.
So we should be very carefully while create new web role with these two role to avoid unnecessary access to portal content.
Why Administrator Web Role has access to edit the portal front end content?
It is because by default configuration Administrator web role is assigned with Web Page Access Control Rule of Home Page as Grant Change. Since Home Page is the root page of most of the other web pages so this access control rule gives access to edit the front end content.
Authenticated User Web Role: This web role will have by default Authenticated User Role as Yes & Anonymous User Role as No. Because of this it will get access to login users.
Anonymous User Web Role: This web role will have by default Authenticated User Role as No & Anonymous User Role as Yes. Because of this, it will get access to anonymous user who is accessing the portal.
As I mentioned before, all of these default available web role can be modified as per security design.
Create New Web Role: Web Role can be created with below fields but as I mentioned we should be careful while setting Authenticated User Role & Anonymous User Role field to Yes.
Associating Table Permission: Web Roles can have multiple Table Permission associated. Between Web Role & Table Permission there is N:N relationship.
Associating Web Page Access Control Rule: Web Role can also have multiple Web Page Access Control rule (which gives access to view the page link or not). For any web page if Web Page Access Control Rule is create then accessibility to this web page can be control by Web Role. The Web Role which are associated will have access to web page.
Good Luck Geeks !!! :)
No comments:
Post a Comment
Write us your comment.