The creation of security roles to access and manipulate corporate information is a critical point in security. Not all users can, or should, view or edit certain information that is not within their competencies or is sensitive. In addition to these security roles, we can use field security profiles to help us to fully define the security of all the information we have in our Dataverse database.
Security in Dataverse is defined through security roles. When defining one of these roles, we must configure, for each table, the permissions to Create, Read, Write, Delete, Append, Append To, Assign and Share. In addition, when granting these permissions we do so at the User, Business Unit, Business Unit and Secondary Business Unit and Organization levels.
![](https://intelequia.com/Portals/0/Blog/Images/Establecer Directrices de Seguridad Dataverse/Rol Seguridad.png?ver=5sn1VGNGbjqpgX1CYEm7og%3d%3d)
Illustration 1. Security role
However, when granting these permissions at the table level, we may encounter the problem that one of the fields must have different permissions than the rest. For this, we can make use of column level security.
Let's imagine that we have a table of products and a security role for sellers that allows them to Create, Read and Write.
![](https://intelequia.com/Portals/0/Blog/Images/Establecer Directrices de Seguridad Dataverse/Tabla de Productos.png?ver=9y3mbwQNj38w2dH6FvUqGQ%3d%3d)
Illustration 2. Permissions of the Products table
We assign this role to a user and he/she will see the data of this table as follows.
![](https://intelequia.com/Portals/0/Blog/Images/Establecer Directrices de Seguridad Dataverse/Vista Productos Activos.png?ver=pxcXjp9tKt1MksH5d10-Mw%3d%3d)
Illustration 3. View of active products
![](https://intelequia.com/Portals/0/Blog/Images/Establecer Directrices de Seguridad Dataverse/Producto 1.png?ver=pxcXjp9tKt1MksH5d10-Mw%3d%3d)
Illustration 4. Product 1 form
As we can see, you can see and modify the Name, Code, Color and Size fields. We want to restrict the permissions so that you can see the Code but we do not want you to be able to modify it. We cannot do it at the table level because he would not be able to modify the rest of the fields. How do we do it then? Using column level security.
First, we edit the Code column to enable the security of the field.
![](https://intelequia.com/Portals/0/Blog/Images/Establecer Directrices de Seguridad Dataverse/Código de Tabla.png?ver=CHZo8G4QycxsTkm0OHeP-w%3d%3d)
Illustration 5. Editing the Code field of the Products table
Now you can neither see nor modify this field.
![](https://intelequia.com/Portals/0/Blog/Images/Establecer Directrices de Seguridad Dataverse/Productos Activos.png?ver=HkUt9uUc9kHkRMhQojV7nA%3d%3d)
Illustration 6. Active products view
![](https://intelequia.com/Portals/0/Blog/Images/Establecer Directrices de Seguridad Dataverse/Formulario Producto 1.png?ver=pxcXjp9tKt1MksH5d10-Mw%3d%3d)
Illustration 7. Product 1 form
Now we will create a column security profile so that you can Read, but not Write.
![](https://intelequia.com/Portals/0/Blog/Images/Establecer Directrices de Seguridad Dataverse/Perfil de Seguridad de Campo.png?ver=tHFL1xktItgkWNNcBO9wcQ%3d%3d)
Illustration 8. Add field security profile
![](https://intelequia.com/Portals/0/Blog/Images/Establecer Directrices de Seguridad Dataverse/Perfil de seguridad de campo (2).png?ver=tun9K3Mo7lqiYXby24q9sg%3d%3d)
Illustration 9. Field Security Profile
We see that in the Field Permissions section this field appears, by default, with No reading, No writing and No creation.
We edit and allow reading.
![](https://intelequia.com/Portals/0/Blog/Images/Establecer Directrices de Seguridad Dataverse/Editar Seguridad de Campo.png?ver=tHFL1xktItgkWNNcBO9wcQ%3d%3d)
Illustration 10. Editing field security
Finally, we assign this profile to the user (or to a team to which it belongs if we want to assign it to all its members).
![](https://intelequia.com/Portals/0/Blog/Images/Establecer Directrices de Seguridad Dataverse/Añadir Usuario perfil seguridad de campo.png?ver=n6CFPj5wSY4x8tcjIcBITQ%3d%3d)
Illustration 11. Adding user to the field security profile
And as we can see, the data in the Code column can already be viewed without being able to modify it.
![](https://intelequia.com/Portals/0/Blog/Images/Establecer Directrices de Seguridad Dataverse/ilustración 12 vista de productos activos.png?ver=tun9K3Mo7lqiYXby24q9sg%3d%3d)
Illustration 12. View of active products
![](https://intelequia.com/Portals/0/Blog/Images/Establecer Directrices de Seguridad Dataverse/ilustración 13.png?ver=XWIy-mJnmp-eGSBDIlmyog%3d%3d)
Illustration 13. Product 1 form
In this way we can give specific permissions to certain fields of a table, that do not coincide with the rest of the fields of the same one.