Currently, there are only 4 security roles available in LCS: https://docs.microsoft.com/en-us/dynamics365/unified-operations/dev-itpro/lifecycle-services/configure-lcs-security Most of these roles do not match with the required permissions of LCS users. Users with a higher role than the Project team member role have often too much permissions to manage all cloud hosted environments or Microsoft managed environments. We would prefer to more granular assign different roles to users and also differ between the Environments, available from LCS.
Comments
Update: A D365 user does not actually need to be a user in LCS in order to play back task recorders. There's two different ways to play a task recorder, one requires the D365 user be a user in LCS; the other does not. One method involves accessing task recorders via the settings button in D365, and the other is via the "?" help button. The "?" help button > task guides DOES NOT require the D365 user to a LCS user.
However, I would still appreciate if there was a stripped down security role in LCS appropriate for those who are going to create task recorders, i.e. department managers. They should not have access to anything in LCS except that which is pertinent to BPM.
Note, I believe a work around is to have IT staff be users in LCS and those who need to record a task recorder, record it, download the file and send it to someone who is a user in LCS so they can upload and publish it. Though I have yet to test that workflow.
Category: Lifecycle Services
WHY do users who consume task recorders stored in LCS NEED to have a way overreaching security role in LCS? WHY IS THERE NOT A HIGHLY STRIPPED DOWN SECURITY ROLE FOR TASK RECORDER USERS!? This is absolutely crazy.
Category: Lifecycle Services
Administrator on 6/24/2019 10:57:28 PM
Thank you for the feedback. We need more votes for this idea prior to consideration.