The Authorization Box is designed and developed by IT-auditors for application management and control professionals.
It provides a manageable and controllable authorization environment for Microsoft Dynamics 365 Business Central.
Time-consuming and complex authorization processes now belong to the past.
The Authorization Box is a web-based application in which you can manage and control authorizations.
It is linked directly to Dynamics 365 Business Central databases, so any changes are directly effective (if desired), both in Authorization Box and in Business Central.
The Authorization Box consists of the following modules :
- Authorization and User Management.
- Authorization Monitoring.
- Continuous monitoring (separate module).
- User Templates (separate module).
¶ Authorization and User Management
The Authorization Management module provides functionality to create and manage the Authorization Framework.
The foundation for the Authorization Framework is the Organization Chart, where you create Departments and Organization Roles.
On a more detailed level you can create permission sets or create permission set groups which you can then link to Organization Roles.
These Organization Roles are assigned to users through Authorization Requests.
Any change in the authorization design is directly (or per start date / end date) synchronized with Business Central or will be synchronized after approval of the request.
Creating and modifying the organization structure can be done through the Authorization Box interface and with Excel.
The User Management module in Authorization Box provides a workflow for Authorization Requests with optional approval.
This enables assignment of responsibility for creating new user accounts to the responsible data owner or process owner, instead of application management or the IT-department.
Through an Authorization Request, users are assigned organization roles, if desired on a company or company group level.
In case of employee offboarding or change of function you can revoke the Organization Roles directly or by an end date.
¶ Authorization Monitoring
The Monitoring module provides insights into Critical Permissions and the implemented Segregation of Duties (SoD) in Business Central.
The analysis helps you to find incorrect permissions in Permission Sets, Organization Roles and User accounts.
Furthermore, the module analyzes conflicts in segregation of duties.
According to SOx regulations, top management must be ‘in control’ and provide insight into the effectiveness of the SoD as part of the application controls.
SoD Monitoring is an audit tool that helps management to remain ‘in control’.
¶ Continuous Monitoring
Continuous Monitoring in Authorization Box automatically monitors authorization changes in Business Central and notifies you of any critical changes.
Notifications are displayed in your personal dashboard and/or sent by e-mail.
You manually define of which authorizations you want to receive notifications, so only notifications which are useful to you are sent.
The Continuous Monitoring functionality is not an Authorization Box standard functionality, but comes in a separate module.
¶ User Templates
Authorization Templates are used to flexibly setup user related tables in Dynamics Business Central, including extensions / customization and to define how you want the records to be filled.
Example: if you authorize a user as sales employee, you assign all the permission sets from that organization role. Alongside the permission sets, it is possible with templates to automatically add records in the sales person table in Business Central for that new sales employee.
With templates you can create records in certain tables by assigning an organization role to a user and also remove certain records by removing the user's organization role.
¶ How to contact Support
Should you need any additional support, please send an email to support@2-controlware.com
In your mail, please mention
- the version of your NAV/Microsoft Dynamics 365 Business Central environment
- if possible any screenshot and/or error message you received
- when you have multiple databases, in which database connection the problem/error occurred. (test, production, acc, etc.)
You can also use our support portal . (only available in Dutch)
We strive to answer within 48 hours after receipt of your request.
¶ New Releases
Whenever a new release has been published, new release notes can be found in this wiki mentioning what has been added in functionality and /or what bugs have been solved.
A message will also be sent through the Authorization Box, which will be visible in the message box in the top right corner in the Authorization Box.
