FAQs

1) After importing the solution of SharePoint Security Sync from website all the Processes of SharePoint Security Sync are in a 'Draft/Deactivated' state? What to do?

Once the solution is imported, please follow the below steps to activate all the processes of SharePoint Security Sync.

• Click on the gear icon --> Select Advanced Settings.

• Next, select Processes.

• From 'All Process' View activate the process shown in the below screenshot:

2) Is there a way to sync the previous records in bulk?

Yes, by using the Bulk Synchronization Tool you can sync the previous records in bulk.

3) How to enable file deletion?

You can enable file deletion by creating the Security Template for users with required actions.

4) Why is there an error while creating an anonymous link of file?

The error is due to insufficient permission on SharePoint.

5) How can I move history attachments?

You can move/copy your history attachments by using Bulk Migration Job feature.

6) We have done a sandbox copy of the production environment to a TEST env. and like to have the 'SharePoint Security Sync' solution to work in this new instance. What do we need to do?

You need to delete the Inogic License Details record from your sandbox environment. After deleting the next step would be to activate the license.

To delete the SharePoint Security Sync license follow the below steps:

Step 1: Navigate to Advanced Find.

Step 2: Select Inogic License Details in ‘Look for’ and click on Results button.

Step 3: Select the SharePoint Security Sync record and delete it.

7) What to do if I am unable to authenticate the connector?

In such situations, please ensure the credentials are correct and you have a Global administrator privileges and also are a SharePoint site owner.

8) I am getting an error pop-up stating ‘Unable to get Tokens’. What should I do?

Firstly, please check if the browser setting is to Enable the cookies. To know more please follow this link. If the solution still doesn’t work please then try to authenticate the connector once. If you are using Authentication mode as App then please make sure that you have selected the consent box while authenticating. Please follow this link to know about how to authenticate the connector.

9) Which types of SharePoint Site does SharePoint Security Sync support?

Currently, we support only SharePoint Communication and Team site. SharePoint Subsite is not supported.

10) What to do if I get ‘Active user count exceeds the user limit’ error?

This message is displayed when the number of the CRM user is increased beyond the subscribed users. If you get this issue then please reach out to us at crm@inogic.com with the total user count. To get the total user count please execute the below condition in Advanced Find:

11) What to do if I am not able to see the Attach2Dynamics button?

Please make sure the user has Attach2Dynamics Admin / User security role assigned. To know more about the Attach2Dyamics security role please follow this link. Also, please make sure the Entity configuration record is created for the respective entity. To know more about entity configuration please follow this link.

12) Can Attach2Dynamics UI be shown on a Tab instead of clicking the Attach2Dynamics button?

Yes, Attach2Dynamics can be shown on a tab. To know more regarding the configuration please follow this link.

13) I changed my Microsoft account password after which I started facing an issue while using SharePoint Security Sync solution. What to do?

In order to solve this issue, you will have to delete the connection detail record of the user who is this getting error.

To delete the connection detail record of the user please follow the steps given below:

• Open Advanced Find from your CRM.

• In the Look for dropdown select Connection Details entity.

• Please add a condition as shown in the below screenshot:

• Click on Results.

• Select all the records of that user --> Click on Delete.

• Once the record is deleted, you have to authenticate all the connectors and then hit the Attach2Dynamics button. For this, click on the Authenticate button on the ribbon bar.

• Check the consent box as shown below:

14) What are the steps to export Log in Excel sheet?

To export the log record in Excel, follow the steps given below:

• Open 'Advance find' in CRM.

• In the 'Look for' dropdown, select Logs entity.

• Add a condition for the error, as shown in the below screenshot.

• Now click on the Edit Columns button.

• After clicking on 'Edit Columns', you have to click on the Add Column option present inside the Common Task section.

• Next, select the Trace Log field and then click on the OK button.

• Once again click on the OK button on Edit Column window.

• Click on the Result.

• Now click on the Export Logs button dropdown and then click on the Static Worksheet option.

• In a short time, an excel file will be downloaded for offline consumption.

15) Is it safe to delete the completed Batching and Sync Status?

Yes, it is safe to delete the batching and sync status which are completed. By using the Bulk deletion job, you can delete such batching and sync status records. You can make use of the below queries in the bulk deletion job to delete the records.

Query for Sync status:

Query for Batching:

16) How to fix the following error 'No reply address is registered for the application'?

This issue occurs when the Redirect URL has not been added in the redirect section of the Azure App as shown in the below image:

Please follow the below steps to add a redirect URL:

• Navigate to Azure App --> Click on Redirect URL.

• Click on Add a platform button --> Select Web.

• Add the Redirect URL.

• After adding the redirect URL, click on Configure button.

• Navigate to SharePoint Security Sync App -> Connectors --> Authenticate the connector again.

To know more about this, kindly follow this link.

17) What is the difference between SharePoint Security Sync and Attach2Dynamics?

18) I get the following error while creating an anonymous link of file on Attach2Dynamics UI, how can I resolve this?

This error is due to insufficient permissions on SharePoint. So, you need enable some settings in SharePoint. For more details, please click here.

19) What are the advantages of using the SharePoint Security Sync Tool?

You can use the SharePoint Security Sync Tool to move bulk attachments from CRM to SharePoint.

In order to migrate historical data from the CRM to cloud storage such as SharePoint, we've implemented two distinct options: The Bulk Migration Job and the SharePoint Security Sync Tool.

We have incorporated the Bulk Migration Job feature into our solution to facilitate the migration of historical data from the CRM to respective cloud storage. Bulk Migration Job allowed us to migrate the data between specific time frame.

However, the Bulk Migration Job resides within CRM and is dependent on CRM resources, which may lead to extended migration durations.

To address the need for a faster migration process, we have developed the SharePoint Security Sync Tool. This tool is a Windows tool, so it operates independently of CRM resources. Consequently, it can efficiently migrate large volumes of data within a significantly shorter timeframe.

The SharePoint Security Sync Tool essentially replicates the functionality of the Bulk Migration Job but offers the advantage of speed.

To know more about SharePoint Security Sync Tool, click here.

20) How to identify the number of users in my CRM that will be considered for licensing?

Step 1: Log in to CRM and open the Sales Hub App

Step 2: Click on the Advance Find Option present in the right top corner (shown below)

Step 3: In the search bar, search for “User” keyword. Select the User entity and click on the Continue button

Step 4: Once clicked, a side panel will show up containing default conditions. Clear the condition by selecting “Delete all Filters” and apply the below conditions in the filter section as shown below

a. Status Equal Enabled

b. Access mode Equal Read-Write

c. Restricted Access Mode Equal No

d. Primary Email address Does not Equal crmoln2@microsoft.com

Step 5: Add a new related entity condition, where you will find the Security Role option under the Many to many sections as shown below

Step 6: By default, contains data Operator will be selected which will retrieve only those users who have a security role assigned.

Delete the related entity field condition as shown in the screenshot below and then click on the Apply button to provide you with the list of respective users.

21) As a connector authenticated user, what technical step is required after a password change?

Following a password change, a connector authenticated user must interact with the Attach2dynamics User Interface. This action is crucial as it triggers a refresh of the user's authentication tokens or session within the Attach2dynamics connector, ensuring uninterrupted functionality.

22) Which Security-Related Actions in Dynamics 365 CRM Trigger a Permission Sync with SharePoint?

Here are some scenarios which can trigger a permission sync with SharePoint:

• Assignment of a Security Role to a User: When a user is assigned a new security role in CRM, they will receive access in SharePoint based on the permissions defined by that role.

• Removal of a Security Role from a User: When a security role is removed from a user in CRM, the access previously granted through that role is revoked in SharePoint.

• User Added to a Team: When a user becomes a member of a team in CRM, they inherit the team’s access permissions, which are reflected in SharePoint.

• User Removed from a Team: When a user is removed from a CRM team, their associated SharePoint permissions through that team are removed.

• Modification of a Security Role: If a security role's privileges or definitions are modified in CRM, the changes are synchronized to update access in SharePoint for all associated users.

• Record Shared: When a CRM record is explicitly shared with a user or team, SharePoint updates permissions to reflect this sharing.

• Record Reassigned: When a CRM record is assigned to a different user or team, the ownership and corresponding SharePoint access are updated accordingly.

• Security Role Deleted: When a security role is deleted from CRM, the associated permissions are removed from SharePoint to prevent unauthorized access.

• Team Deleted: If a team is deleted in CRM, the corresponding SharePoint group and permissions are also removed.

• Role Associated/Dissociated with a Team: When a security role is either linked to or removed from a team in CRM, SharePoint updates access rights for team members accordingly.

• New User Added to CRM: When a new user is added in CRM, they are automatically added to the appropriate SharePoint groups based on their roles and team memberships.

• User Added/Removed from an Access Team: When a user is added to or removed from an access team tied to a specific record, SharePoint permissions are adjusted for that record.

Unsupported Scenarios

Some changes in CRM do not automatically sync with SharePoint and require manual intervention:

• Business Unit (BU) Change: Synchronization is not supported when a user’s Business Unit is changed in CRM.

• Creation of a new Business Unit: Groups corresponding to the new Business Unit are not created automatically. You must manually run the tool to create the groups.

• Deletion of a Business Unit: When a Business Unit is deleted, the related SharePoint groups and permissions are not removed automatically. You will need to delete them manually.

• User Deactivation or Disabling: If a user is deactivated or disabled in CRM, their existing SharePoint access remains unchanged. You must manually revoke their permissions if necessary.

• User Reactivation or Enabling: When a previously deactivated or disabled user is reactivated in CRM, the sync tool must be run to reassign them to the appropriate SharePoint groups.

Limitations (Due to SharePoint)

It’s important to be aware of technical limitations on the SharePoint side:

• SharePoint Security Scope Limit: SharePoint enforces a limit of 50,000 unique permission entries per list or library. If this limit is exceeded, SharePoint Security Sync will not be able to apply permissions. To avoid reaching this limit, organize documents using the custom folder structure feature available in SharePoint Security Sync. For example, create separate libraries or folders by month, quarter, or year to manage permissions effectively and stay within SharePoint's limits.