Enterprise Security for Microsoft Dynamics GP Jeff Soelberg

Slides:



Advertisements
Similar presentations
ADManager Plus Simplify Your Active Directory Management.
Advertisements

Agenda 2 factor authentication Smart cards Virtual smart cards FIM CM
Project Connect Online Affordable, Secure and Easy to Use Collaboration for Project Teams 01/21/2009.
GP2013 (R2) New features in GP2013 (R2). New Ribbon for windows Edit List is the Print button on the right without the paper background Action pane can.
Privileged Identity Management Enterprise Password Vault
Copyright ®xSpring Pte Ltd, All rights reserved Versions AuthorDateDescription 1.0NBL2012/05First version. Modified from Enterprise edition.
Audit and Security for Microsoft Dynamics GP Andy Snook
Virtual techdays INDIA │ august 2010 Managing Active Directory Using Microsoft Forefront Identity Manager: Amol R Bhandarkar │ Tech Specialist –
© Copyright Lumension Security Lumension Security PatchLink Enterprise Reporting™ 6.4 Overview and What’s New.
Chapter 9 Auditing Database Activities
Database Security and Auditing: Protecting Data Integrity and Accessibility Chapter 4 Profiles, Password Policies, Privileges, and Roles.
Greg Pierce| Concerto Cloud Services Which Cloud is Right for Microsoft CRM?
Account Reset Console Delegated and secure self password resets Joe Vachon Sales Engineer.
ManageEngine ADSolutions Identity and Access Management Auditing & Reporting for Compliance.
Microsoft Windows 2003 Server. Client/Server Environment Many client computers connect to a server.
Database Security and Auditing: Protecting Data Integrity and Accessibility Chapter 3 Administration of Users.
Extranet Enhancements JTC Spring 2015 May 13, 2015.
9/10/20151 Hyperion Enterprise 6.5 New Features & Functionality Robert Cybulski, CPA Finit Solutions.
Module 10: Configuring Windows XP Professional to Operate in Microsoft Networks.
User Manager Pro Suite Taking Control of Your Systems Joe Vachon Sales Engineer November 8, 2007.
Introduction to Microsoft Dynamics GP Kevin Schimke | Project Manager – LeX Business Productivity Team.
Security Planning and Administrative Delegation Lesson 6.
Database Security and Auditing: Protecting Data Integrity and Accessibility Chapter 4 Profiles, Password Policies, Privileges, and Roles.
Best Practices for Implementing Third Party Software to Monitor SOD and User Access Controls Presented by: Jeffrey T. Hare, CPA CISA CIA ERP Seminars.
SQL Server Security By Mattias Lind For PASS Security VC.
1 Chapter Overview Performing Configuration Tasks Setting Up Additional Features Performing Maintenance Tasks.
Empowering people-centric IT Unified device management Access and information protection Desktop Virtualization Hybrid Identity.
GPUG ® Summit 2011 November 8-11 Caesars Palace – Las Vegas, NV Deployment, Administration and Performance Jeff Soelberg Fastpath Sarah PurdyMicrosoft.
Database Security and Auditing: Protecting Data Integrity and Accessibility Chapter 9 Auditing Database Activities.
2. SQL Security Objectives –Learn SQL Server 2000 components Contents –Understanding the Authentication Process –Understanding the Authorization Process.
KDM Quicklist. The Problem “Small” but critical company data “lists” are important to businesses. These “lists” are scattered in “One-Off” locations.
INTRO TO SQL SERVER SECURITY By Robert Biddle
All Partner Meeting A cloud-based Identity and Password Management solution used by MSPs to better manage their clients' passwords, increase security,
Oracle 11g: SQL Chapter 7 User Creation and Management.
SQL SERVER AUDITING. Jean Joseph DBA/Consultant Contact Info: Blog:
Security. Audit. Compliance. Mark Polino CPA.CITP.CFF, CGMA, Microsoft MVP Dynamics Credentialed Professional Naked and Afraid: Re-implementing.
BI Reporting Tools Kalyn Kelly June 10, BI – Business Intelligence  A set of theories, methodologies, architectures, and technologies that transform.
Security. Audit. Compliance.
Building a Sound Security and Compliance Environment for Dynamics AX Frank Vukovits Dennis Christiansen Fastpath, Inc.
Unlocking the Dynamics AX 2012 Security Model
Liz Piteo Native Controls in a Microsoft Dynamics Environment.
BEST PRACTICES FOR DYNAMICS NAV ADMINISTRATION AND SECURITY Per Mogensen.
Understanding the Dynamics AX2012 Security Model 4/14/2014 AXUG User Group Meeting.
PremierPoint Solutions Announces Significant New Features in Extranet Collaboration Manager for SharePoint 2013 R2 1888PressRelease - PremierPoint Solutions.
SQL Database Management
Andy Snook Fastpath gives you insights on your CRM data that would make the NSA jealous Andy.
Dynamics GP Security - A to Z
Dynamics GP – You Own It … Why Not Use It
Active Directory Audit | User Logon/Logoff Audit | File Server Audit | Windows Server Audit Printer Audit | Removable Storage Audit | Compliance Reports.
Best Practices for Dynamics NAV Administration and Security
Naked and Afraid: Re-implementing Dynamics GP Security
Security. Audit. Compliance.
Get to know SQL Manager SQL Server administration done right 
of our Partners and Customers
Empowering business users to extend business processes to the cloud
Refreshable Excel Reports – The Rest Of The Story
Security. Audit. Compliance
Designing Database Solutions for SQL Server
Active Directory Auditing Headaches (and How to Solve Them)
Login & administration page
The Dirty Business of Auditing
Security. Audit. Compliance.
Security. Audit. Compliance.
Collaborative Business Solutions
Azure Enables Mobility, Easy Sync and Share, and Allows Companies to Retain Data Control MINI-CASE STUDY “Azure provides the full stack of technology that.
Navigating GP Security
DIY GP Maintenance Paul Johnson.
Shawn Dorward – InterDyn Artis
Presentation transcript:

Enterprise Security for Microsoft Dynamics GP Jeff Soelberg

Audit. Security. Compliance. Get on the Fastpath. Fastpath Facts  Founded 2004  Headquarters in Des Moines, IA  Microsoft Gold Certified ISV  Microsoft Gold Certified Partner  Staff includes CPAs and CIAs

Audit. Security. Compliance. Get on the Fastpath. Can we prove it?  400+ customers  30+ countries  6 continents  IIA Industry Leader

Audit. Security. Compliance. Get on the Fastpath. Security and Compliance Products Robust audit trail solution designed for the auditor Audit Trail Sarbanes-Oxley compliance and segregation of duties solution Assure Active Directory integration offers single sign on for Dynamics GP Config AD Report design and scheduling tool allows non-technical users to build reports Audit View

Audit. Security. Compliance. Get on the Fastpath. Minimizing the use of ‘sa’ with Dynamics GP  Problem  ‘sa’ is the only GP user out of the box that is assigned to the SQL fixed server role of sysadmin  ‘sa’ must create users, and assign them to companies out of the box  ‘sa’ must create new companies out of the box  ‘sa’ is also assigned POWERUSER role within from within GP out of the box  This dependence on the ‘sa’ account creates significant financial, system and organizational risk. First, ‘sa’ is a generic account name and not a named account. This makes it difficult to isolate who used the ‘sa’ account to make critical changes and verify if those changes were authorized. Second, the ‘sa’ account can view, update and delete data from within Dynamics GP, SQL Server Management Studio and any other tools that provide database connectivity including Microsoft Excel. Finally, ‘sa’ access enables user to make sweeping and powerful changes to critical data. This increases the risk of malicious or unintentional database catastrophes.

Audit. Security. Compliance. Get on the Fastpath. Minimizing the use of ‘sa’ with Dynamics GP  Solution  There are many solutions that are better than using the out of the box ‘sa’ access for these tasks. Some options are listed on page 37 of the SecurityPlanning.pdf provided by Microsoft.  Designate a standard GP user as your organization’s GP Access administrator  Assign SQL Server Fixed server role to a GP SQL Login  Revoke Security Setup within GP  This user is responsible for:  Creating and deleting all Dynamics GP users  Assigning users to companies in your Dynamics GP environment  Resetting forgotten user passwords  This user should NOT have access to assign security rights from within Dynamics GP.

Audit. Security. Compliance. Get on the Fastpath. Minimizing the use of ‘sa’ with Dynamics GP  Designate a standard GP user as your organization’s GP Security Administrator.  This user is responsible for:  Assigning Users to Roles, as well as their Mod-Alt profile  Assigning Tasks to Roles and creating or deleting Roles  Assigning Windows and Reports to Tasks and creating or deleting Tasks  Managing Mod-Alt profile setups  This user should NOT have the ability to create GP Users, or assign them to GP Companies

Audit. Security. Compliance. Get on the Fastpath. Minimizing the use of ‘sa’ with Dynamics GP  Revoke the POWERUSER role from ‘sa’. Give ‘sa’ the minimum permissions required to perform duties within Dynamics GP. Places where ‘sa’ is still required:  Performing 3rd party upgrades (Not all 3rd parties require ‘sa’)  Using Professional Services Tools Library

Thank you! Jeff Soelberg

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.