In AX 2012 and D365 security is dependent on the User Role/privilege setup except for when the Tree and the Units are setup in the Report.

The current design is that for Tree security, the users need to setup the security in Management Reporter in the Unit Security field in the Tree Definition.

We would like to request for a feature for security to be only setup and controlled in one place for simplicity and easier maintenance.  If a user does not have access to a legal entity in D365, then this should roll down to all components of Management Reporter including the tree and it's units.