The only "supported" way to enforce the data security is to use the supplied
API's. I have done some research into replicating the security and there is a
lot to the security that would be difficult to replicate. You basically need to
evaluate the SecurityDescriptor of each record to see of the user can view that
record or not. This seems like it should be pretty straight forward, but it
isn't.
Have you considered writing a custom webservice to provide the data you need
that use CRMQuery to do the join you want?
Matt Parks
MVP - Microsoft CRM
----------------------------------------
----------------------------------------
On 30 Dec 2004 09:15:40 -0800, sveinn@ok.is (Sveinn) wrote:
Has anybody used Reporting Services with MS CRM successfully by going
directly to the CRM database without breaking the security model.
According to MS one has to use the Webservice layer if you don't want
to break the security model. Reporting Services can read from a
webservice with some coding but this method is not good when you have
to query and join together different entities.
So the "right" way is to make Reporting Services query directly from
the database, but then you have no security by default?
Has anyone tried to implemented the CRM security mode in SQL through
f. ex. procedures. It seems quite a task, so if anyone has experience
he could share or even better some code, I would appreciate it.
Best regards
Sveinn Olafsson
