The Authorization Box is designed and developed by IT-auditors for Application Management and Control professionals.
It provides a manageable and controllable authorization environment for Microsoft Dynamics 365 Business Central.
Time-consuming and complex authorization processes now belong to the past.
The Authorization Box is a web-based application in which authorizations can be managed and controled.
It is linked directly to Dynamics 365 Business Central databases, so any changes are directly effective (if desired), both in Authorization Box and in Business Central.
The Authorization Box consists of the following modules :
- Authorization and User Management.
- Authorization Monitoring.
- Continuous monitoring (separate module).
- User Templates (separate module).
¶ Authorization and User Management
The Authorization Management module provides functionality to create and manage the Authorization Framework.
The foundation for the Authorization Framework is the Organization Chart, where Departments and Organization Roles are created.
On a more detailed level, permission sets or permission set groups can be created, which then can be linked to Organization Roles.
These Organization Roles are assigned to users through Authorization Requests.
Any change in the authorization design is directly (or per start date / end date) synchronized with Business Central or will be synchronized after approval of the request.
Creating and modifying the organization structure can be done through the Authorization Box interface and with help of an Excel document.
The User Management module in the Authorization Box provides a workflow for Authorization Requests with, optional, approval.
This enables assignment of responsibility for creating new user accounts, to the responsible data owner or process owner, instead of application management or the IT-department.
Through an Authorization Request, users are assigned organization roles. If desired, this can be executed on a company or company group level.
In case of employee offboarding or a change of function, the Organization Roles can be revoked directly or by using an end date.
¶ Authorization Monitoring
The Monitoring module provides insights into Critical Permissions and the implemented Segregation of Duties (SoD) in Business Central.
The analysis helps to find incorrect permissions in Permission Sets, Organization Roles and User accounts.
Furthermore, the module analyzes conflicts in segregation of duties.
According to SOx regulations, top management must be ‘in control’ and provide insight into the effectiveness of the SoD as part of the application controls.
SoD Monitoring is an audit tool that helps management to remain ‘in control’.
¶ Continuous Monitoring
Continuous Monitoring in Authorization Box automatically monitors authorization changes in Business Central and sends notifications of any critical changes.
Notifications are displayed in personal dashboards and/or sent by e-mail.
Manually define of which authorizations a notification is required, so only notifications which are useful are sent and received.
The Continuous Monitoring functionality is not an Authorization Box standard functionality, but comes in a separate module.
¶ User Templates
Authorization Templates are used to flexibly setup user related tables in Dynamics Business Central, including extensions / customization and to define how records are to be filled.
Example: when a user has been assigned the Organization role of Sales employee, all the permission sets from that Organization role are assigned.
Alongside the Permission sets, it is possible with templates to automatically add records in the sales person table in Business Central for that new Sales employee.
With templates, records can be created in certain tables by assigning an Organization role to a user and also remove certain records by removing the user's Organization role.
¶ How to contact Support
Should any additional support be required, please send an email to support@2-controlware.com
In your mail, please mention
- the version of your NAV/Microsoft Dynamics 365 Business Central environment
- if possible any screenshot and/or error message you received
- when you have multiple database connections, in which one the problem/error occurred. (test, production, acc, etc.)
You can also use our support portal . (only available in Dutch)
Should you need access to our support portal, please send an email to support@2-controlware.com with your contact details.
An email to activate your account will then be send to you as soon as possible.
We strive to answer within 48 hours after receipt of your request.
¶ New Releases
Whenever a new release has been published, new release notes can be found in this wiki mentioning what has been added in functionality and /or what bugs have been solved.
A message will also be sent through the Authorization Box, which will be visible in the message box in the top right corner in the Authorization Box showing a number in the oval icon.
The icon will turn up Green. An important message will turn the icon into Red.
¶ YouTube channel
On our YouTube channel you can find several videos explaining features you can use in the Authorization Box. We are adding new videos continuously.
The following videos are available :
Monitoring - Settings, Critical Permissions and Conflicts
Authorization Management - Authorization Requests, Processed Authorization Requests, Synchronization
How to Use the Export & Import Functions
How to create and maintain an authorization framework by using an organization chart
How to review Analysis results by Organization Role
Installation of the Authorization Box Multi Connector
2-Controlware Software Overview Demo