Stuck on an issue?

Lightrun Answers was designed to reduce the constant googling that comes with debugging 3rd party libraries. It collects links to all the places you might be looking at while hunting down a tough bug.

And, if you’re still stuck at the end, we’re happy to hop on a call to see how we can help out.

Question to "Admin | App Archive and Clean Up - Start Approval"

See original GitHub issue

Describe the bug It’s a question not a bug. I’ve created an environment for the CoE and added an Security Group. In this Security Group are only myself and other admins. But the names Approval flow runs into this error, because most of the users don’t belong to this Security Group? Must the end users have access to the CoE environment? That makes no sense for me. But it seems that it is not possible to create an Approval for the CoE environment, if the end user has no rights for the CoE environment.

Component (please tell us which flow or app you are experiencing issues with):

Center of Excellence - Compliance and Report Components
Version 1.9
Admin | App Archive and Clean Up - Start Approval

To Reproduce Steps to reproduce the behavior: Flow Run in step: Create approval. Output Body:

{
  "error": {
    "code": "XrmApplyUserNotMemberOfSecurityGroup",
    "message": "Could not create a CDS system record representing user 'XXXXXXXXXXXXX'. Please ask a database administrator to add the user to the authorized security group."
  }
}

Issue Analytics

State:
Created 3 years ago
Comments:9

Top GitHub Comments

1reaction

JeneferM-MSFTcommented, Jun 24, 2020

You can secure environments to users. Please go read about how to do this in the CDS Security Model documentation, or in this more targeted document, Add Users to Environments.

1reaction

JeneferM-MSFTcommented, Jun 22, 2020

On an environment without an associated Security Group, users that receive an approval are automatically added to the “Approvals User” Security Role - there is no action on the admin to allow these users to use Approvals.