Presentation is loading. Please wait.

Presentation is loading. Please wait.

Enterprise Security for Microsoft Dynamics GP Jeff Soelberg

Published byMaria Rhoda Wilkins Modified over 9 years ago

Similar presentations

Presentation on theme: "Enterprise Security for Microsoft Dynamics GP Jeff Soelberg"— Presentation transcript:

1 Enterprise Security for Microsoft Dynamics GP Jeff Soelberg soelberg@gofastpath.com

2 Audit. Security. Compliance. Get on the Fastpath. Fastpath Facts  Founded 2004  Headquarters in Des Moines, IA  Microsoft Gold Certified ISV  Microsoft Gold Certified Partner  Staff includes CPAs and CIAs

3 Audit. Security. Compliance. Get on the Fastpath. Can we prove it?  400+ customers  30+ countries  6 continents  IIA Industry Leader

4 Audit. Security. Compliance. Get on the Fastpath. Security and Compliance Products Robust audit trail solution designed for the auditor Audit Trail Sarbanes-Oxley compliance and segregation of duties solution Assure Active Directory integration offers single sign on for Dynamics GP Config AD Report design and scheduling tool allows non-technical users to build reports Audit View

5 Audit. Security. Compliance. Get on the Fastpath. Minimizing the use of ‘sa’ with Dynamics GP  Problem  ‘sa’ is the only GP user out of the box that is assigned to the SQL fixed server role of sysadmin  ‘sa’ must create users, and assign them to companies out of the box  ‘sa’ must create new companies out of the box  ‘sa’ is also assigned POWERUSER role within from within GP out of the box  This dependence on the ‘sa’ account creates significant financial, system and organizational risk. First, ‘sa’ is a generic account name and not a named account. This makes it difficult to isolate who used the ‘sa’ account to make critical changes and verify if those changes were authorized. Second, the ‘sa’ account can view, update and delete data from within Dynamics GP, SQL Server Management Studio and any other tools that provide database connectivity including Microsoft Excel. Finally, ‘sa’ access enables user to make sweeping and powerful changes to critical data. This increases the risk of malicious or unintentional database catastrophes.

6 Audit. Security. Compliance. Get on the Fastpath. Minimizing the use of ‘sa’ with Dynamics GP  Solution  There are many solutions that are better than using the out of the box ‘sa’ access for these tasks. Some options are listed on page 37 of the SecurityPlanning.pdf provided by Microsoft.  Designate a standard GP user as your organization’s GP Access administrator  Assign SQL Server Fixed server role to a GP SQL Login  Revoke Security Setup within GP  This user is responsible for:  Creating and deleting all Dynamics GP users  Assigning users to companies in your Dynamics GP environment  Resetting forgotten user passwords  This user should NOT have access to assign security rights from within Dynamics GP.

7 Audit. Security. Compliance. Get on the Fastpath. Minimizing the use of ‘sa’ with Dynamics GP  Designate a standard GP user as your organization’s GP Security Administrator.  This user is responsible for:  Assigning Users to Roles, as well as their Mod-Alt profile  Assigning Tasks to Roles and creating or deleting Roles  Assigning Windows and Reports to Tasks and creating or deleting Tasks  Managing Mod-Alt profile setups  This user should NOT have the ability to create GP Users, or assign them to GP Companies

8 Audit. Security. Compliance. Get on the Fastpath. Minimizing the use of ‘sa’ with Dynamics GP  Revoke the POWERUSER role from ‘sa’. Give ‘sa’ the minimum permissions required to perform duties within Dynamics GP. Places where ‘sa’ is still required:  Performing 3rd party upgrades (Not all 3rd parties require ‘sa’)  Using Professional Services Tools Library

9 Thank you! Jeff Soelberg soelberg@gofastpath.com

Download ppt "Enterprise Security for Microsoft Dynamics GP Jeff Soelberg"

Similar presentations

ADManager Plus Simplify Your Active Directory Management.

ADManager Plus Simplify Your Active Directory Management.
Agenda 2 factor authentication Smart cards Virtual smart cards FIM CM

Agenda 2 factor authentication Smart cards Virtual smart cards FIM CM
Project Connect Online Affordable, Secure and Easy to Use Collaboration for Project Teams 01/21/2009.

Project Connect Online Affordable, Secure and Easy to Use Collaboration for Project Teams 01/21/2009.
GP2013 (R2) New features in GP2013 (R2). New Ribbon for windows Edit List is the Print button on the right without the paper background Action pane can.

GP2013 (R2) New features in GP2013 (R2). New Ribbon for windows Edit List is the Print button on the right without the paper background Action pane can.
Privileged Identity Management Enterprise Password Vault

Privileged Identity Management Enterprise Password Vault
Copyright ®xSpring Pte Ltd, All rights reserved Versions AuthorDateDescription 1.0NBL2012/05First version. Modified from Enterprise edition.

Copyright ®xSpring Pte Ltd, All rights reserved Versions AuthorDateDescription 1.0NBL2012/05First version. Modified from Enterprise edition.
Audit and Security for Microsoft Dynamics GP Andy Snook

Audit and Security for Microsoft Dynamics GP Andy Snook
Virtual techdays INDIA │ 18-20 august 2010 Managing Active Directory Using Microsoft Forefront Identity Manager: Amol R Bhandarkar │ Tech Specialist –

Virtual techdays INDIA │ august 2010 Managing Active Directory Using Microsoft Forefront Identity Manager: Amol R Bhandarkar │ Tech Specialist –
Www.lumension.com © Copyright 2008 - Lumension Security Lumension Security PatchLink Enterprise Reporting™ 6.4 Overview and What’s New.

© Copyright Lumension Security Lumension Security PatchLink Enterprise Reporting™ 6.4 Overview and What’s New.
Chapter 9 Auditing Database Activities

Chapter 9 Auditing Database Activities
Database Security and Auditing: Protecting Data Integrity and Accessibility Chapter 4 Profiles, Password Policies, Privileges, and Roles.

Database Security and Auditing: Protecting Data Integrity and Accessibility Chapter 4 Profiles, Password Policies, Privileges, and Roles.
Greg Pierce| Concerto Cloud Services Which Cloud is Right for Microsoft CRM?

Greg Pierce| Concerto Cloud Services Which Cloud is Right for Microsoft CRM?
Account Reset Console Delegated and secure self password resets Joe Vachon Sales Engineer.

Account Reset Console Delegated and secure self password resets Joe Vachon Sales Engineer.
ManageEngine ADSolutions Identity and Access Management Auditing & Reporting for Compliance.

ManageEngine ADSolutions Identity and Access Management Auditing & Reporting for Compliance.
Microsoft Windows 2003 Server. Client/Server Environment Many client computers connect to a server.

Microsoft Windows 2003 Server. Client/Server Environment Many client computers connect to a server.
Database Security and Auditing: Protecting Data Integrity and Accessibility Chapter 3 Administration of Users.

Database Security and Auditing: Protecting Data Integrity and Accessibility Chapter 3 Administration of Users.
Extranet Enhancements JTC Spring 2015 May 13, 2015.

Extranet Enhancements JTC Spring 2015 May 13, 2015.
9/10/20151 Hyperion Enterprise 6.5 New Features & Functionality Robert Cybulski, CPA Finit Solutions.

9/10/20151 Hyperion Enterprise 6.5 New Features & Functionality Robert Cybulski, CPA Finit Solutions.
Module 10: Configuring Windows XP Professional to Operate in Microsoft Networks.

Module 10: Configuring Windows XP Professional to Operate in Microsoft Networks.
User Manager Pro Suite Taking Control of Your Systems Joe Vachon Sales Engineer November 8, 2007.

User Manager Pro Suite Taking Control of Your Systems Joe Vachon Sales Engineer November 8, 2007.

Similar presentations

Ads by Google