Wednesday, October 05, 2011 6:48 PM
pablop
Error ‘Access is Denied’ when saving an opportunity. AccessCheckEx failed
Hi,
I just faced this error today with a user trying to save an opportunity:
Log :
Unhandled Exception: System.ServiceModel.FaultException`1[[Microsoft.Xrm.Sdk.OrganizationServiceFault, Microsoft.Xrm.Sdk, Version=5.0.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35]]: SecLib::AccessCheckEx failed AccessRights: AppendToAccess http://www.w3.org/2001/XMLSchema-instance" xmlns=" http://schemas.microsoft.com/xrm/2011/Contracts" > http://schemas.datacontract.org/2004/07/System.Collections.Generic" />
Cause After reviewing the security role he belongs to, I finally understood what the problem was:
I had imported Accounts and assigned them to a Team (called ‘All’ btw) which belonged to the main Business Unit in the system. (this was because it was not possible to assign owners at the moment of the import, so, Accounts needed to be available to everyone and not assigned to someone specific) The user trying to save the opportunity belonged to a child BU and was assigned a role which had AppendTo privileges for Account entity at the BU scope:
So, the opportunity couldn’t be saved because the Account which was selected as Parent Customer within the opp is owned by a Team in a Parent BU and AppendTo privilege was set up just at a BU scope , so privileges were insufficient. Solution So, my solution was to assign user’s role AppendTo privileges at the Organization scope so the user could be able to select any Account within the system to append the opportunity to
Hope it helps to save you some time in sorting out a similar problem.
PP [twitter: @pabloperalta ]
Filed under: dynamics crm 2011