In Entra the name of a Security Group can be long - and longer than the 20 characters that Business Central limits it to.

So, when creating a Security Group in Business Central 1:1 from Entra via the wizard, the Security Group Code is automatically cut to 20 characters.

If you are not completely aware of this cut, and you click OK then you create a Security Group Code in Business Central that is not equal to the one in Entra. And the consequence is harsh.

The update of Users from Entra does not tie Users to the Security Group in Business Central - because of this mismatch. And hence the Users are not assigned the intended Permission Sets in Business Central.

Can the field length of the Security Group Code in Business Central be elongated to equal the one in Entra?

If not - can the user creating the Security Groups in Business Central be made clearly aware of the mismatch - so that the Security Group can me renamed in Entra prior to creation in Business Central.

Potentially much information needs to be included into a Security Group name/Code:

• Perhaps the group is specific for Business Central and hence BC would make sense as a prefix
• The Database ID (maybe country code) can be needed (in case a specific Security Group is set as mandatory on each environment)
• The Company name or a shortened ID is needed (in case a Company filter is needed and hence different Security Groups)
• The purpose needs to be specified (the group of people and their work area e.g. SALES)
• Perhaps further specifications are needed (like with/without access to wages or other sensitive areas)