MS CRM Portal Security : Table Permission (Entity Permission)

Table Permission (Entity Permission) give access to Entities form of D365 or Web Form which is used in Web Page. Web Page can be configured using the Base Form (Entity Form) to rendered the fields layout of entity as configured in D365 form.

Base Form (Entity Form) configuration is used to perform the Create, Update, Delete etc. such operation in D365 through portal (Since Portal is extension of D365). To perform such operation in D365 we need the Security Role with proper privilege. Similar to that to perform the such operation from Portal we need privilege on the Entity like to create new record we need create privilege. 

These privilege can be configured using Table Permission (Entity Permission). These Table Permission will be associated to the Web Role. Through the Web Roles associated to Contact Portal User will have access to the particular entity form.

These Table Permission can be configured through Portal Studio and Portal Management app. I will discuss here using Portal Management app.

Configure New Table Permission:

After selecting Table Permission from left side of navigation, click on New to create new Table Permission.

Name: Enter the name of Table Permission. In the name can mentioned the Access Type like Global, Account, Parent etc. just to indicate from name that this Table Permission is configured as this scope.

Table Name: Select the entity name from drop down against which table permission is being configured.

Website: Select the website (portal) for which table permission is being configure because some it can have multiple Portal configured.

Access Type: It define what records can be access of the particular table (entity) type with the privilege as configured. There are five access type.

•     Global : Any Contact Portal User with the Role(Table Permission associated to Role) will have access to all records of particular table (entity) type.
•     Contact: Permission will be granted to only those records of particular table (entity) type that are related to Login Portal Contact users via defined (selected) relationship.
•     Account : Permission will be granted to those records which are associated to Login Contact User's Parent Account. Contact will be have lookup account. So permission will to related of account selected on login contact users.
•     Parent : When creating Table Permission with Parent access type then we need to select the parent Table Permission. Permission to the particular table (entity) will be granted as as per Parent Table Permission selected. 
•     Self : It allows to define the rights to their own Contact (Identity) record.   

Privilege: Privilege like Read, Write, Create, Delete, Append & Append To can be selected to provide the access. 

After Table Permission is created then it can be associated to number of Web Roles. Between Table Permission & Web Role there is N:N relationship. One Table permission can be associated to multiple Web Role. One Web Role can have multiple Table Permission.

When selected Web Role is associated to Contact Portal User then portal user gets access to this Table Permission.