Abstract image of a woman sitting on books and studying on a laptop

Power platform Bootcamp Bulgaria 2021 - Power Platform Security

Download as PPTX, PDF
D
Dipti Chhatrapati

This document outlines security best practices for the Microsoft Power Platform. It discusses implementing tenant level access control to restrict connections between internal and external tenants. It also recommends isolating environments by restricting environment creation and using data loss prevention policies. The document also provides guidance on implementing resource level security through sharing, field level security in Dataverse, and grouping connectors with data loss prevention policies. It concludes with a demonstration of these security capabilities.

Business
1 of 13
Downloaded 33 times
1
2
3
4
5
6
7
8
9
10
11
12
13
Global Power Platform Bootcamp, Bulgaria 2021 Crack the insecurity with Power Platform Security - Dipti Chhatrapati, Modern Workplace Architect, AIS. Global Power platform Bootcamp Bulgaria 2021
Thanks to our Sponsors With the support of: Global Power platform Bootcamp Bulgaria 2021
Agenda Tenant Level Access Control Environment Isolation Resource-level security Connection security and DLP Dataverse Access Levels Balance the privileges Separate illusion from the reality Make a promise to be secured Set the relationships & boundaries Organize realistic routine 1 2 3 4 5 Global Power platform Bootcamp Bulgaria 2021
Security is built into every layer of the stack. Resource permissions Microsoft Dataverse security Dev Test Environment Prod Tenant access & isolation 1 3 4 5 2 Environment access & strategy Connector access and data loss policies Global Power platform Bootcamp Bulgaria 2021
Tenant Level Access Control Power Apps Power Automate Internal user cannot establish a connection using external tenant credentials External user cannot establish a connection using internal tenant credentials INTERNAL TENANT EXTERNAL TENANT Power Apps Power Automate 1 AAD Conditional policies by Device/Location/User/Group Global Power platform Bootcamp Bulgaria 2021
Environment Isolation Restrict environment creation to Power Platform/Dynamic 365 Admins only Provision personal apps in Default and non-personal apps in Sandbox/Production env. •Dev/Test/Production environments for specific business groups or application Configure DLP policies for all environments to restrict connectors Non-default and non-developer environments with Dataverse can be restricted with specific AAD security group. 2 Global Power platform Bootcamp Bulgaria 2021
Resource Level Security Share via Security Role Co- Ownership to Share Co- Ownership to Edit Co- Ownership to Use Canvas App Canvas App • To edit, update and delete this flow. • access the run history and add or remove other owners. Cloud Flow Model Driven App • Environment Admin • Environment Maker • Basic User • System Admin • System Customizer 3 Global Power platform Bootcamp Bulgaria 2021
Connectors and Data Loss Prevention Policies Data Connectors Connection Power Platform Resources 4 Global Power platform Bootcamp Bulgaria 2021
Connectors and Data Loss Prevention Policies Connectors Grouping – Business/Non-Business/Blocked Tenant Level and Environment Level DLP policies Set policies using connectors/Admin center/PowerShell 4 Most restrictive DLP – Default/new environment (Tenant, all env. except ) Org Productivity DLP – LOB environments ( Tenant , Include env.) Org IT management DLP - Central IT environment ( Tenant , Include env.) Special Env DLP – Special Application Environment ( Environment, Single Env.) Global Power platform Bootcamp Bulgaria 2021
Microsoft Dataverse Security Field Level Security Record level security Business Units and Teams Security Roles and Privileges ( Users/Teams) Read-Create-Update Create-Read-Write-Delete-Append-Append To-Assign-Share Security boundary for the users data / work with security role’s scope Environment Admin - Environment Maker - Common Data Service User - System Admin - System Customizer 5 Global Power platform Bootcamp Bulgaria 2021
Default BU BU 1 BU 1.1 BU 1.1.1 BU 1.2 BU 2 BU 2.1 BU 2.2 BU 2.2.2 Tamra Jeramy Lucas Ren Gavin Ross Tobias Weston Tom Dipti Record Scope Who can access? Create-Read-Write-Delete-Append- Append To-Assign-Share Global Anyone in the organization Deep Any user from assigned business unit and it’s child business unit Local Any user from assigned business unit Basic User who owns Record Level Security Epic Manager Security Role Create Read Write Delete  Anyone can create record  Tamra can only read all records from BU 1/1.2/1.1/1.1.1 User experience with Epic Manager Security Role  Lucas can only write records from BU 1.1  Ross can only delete record created by him in BU 2.1 Global Power platform Bootcamp Bulgaria 2021
DEMO How user connects to external tenant which should be restricted? How environments can be restricted? How are resources shared with users/Security groups? How are connectors grouped with DLP? How records can be secured via security roles/scopes? Global Power platform Bootcamp Bulgaria 2021
Thank you for joining! With the support of: Join Dynamic 365 Trial Tenant: https://docs.microsoft.com/en- us/dynamics365/marketing/trial-signup Administering Power Platform : https://docs.microsoft.com/en-us/power- platform/admin/admin-documentation Power Platform Best Practices: https://docs.microsoft.com/en-us/power- platform/guidance/adoption/methodology Global Power platform Bootcamp Bulgaria 2021

More Related Content

PPTX
F17_Unified Governance for Power Automate, Power Apps, Power BI
serge luca
 
PPTX
Power Platform Governance Center of Excellence
Withum
 
PPTX
Administering power platform deployment planning
Dipti Chhatrapati
 
PPTX
Power Platform Governance Webinar
Runpipe
 
PDF
Ideas & Inspiration: Getting Started & Driving Success With Power Platform At...
Richard Harbridge
 
PPTX
PL-100 Microsoft Power Platform App Maker
Nanddeep Nachan
 
PPTX
Team Nation 2022 - How to choose between Dataverse, SQL Azure, SharePoint lis...
serge luca
 
PPTX
Dataverse meets Teams: low code app opportunities for everyone
Jukka Niiranen
 
F17_Unified Governance for Power Automate, Power Apps, Power BI
serge luca
 
Power Platform Governance Center of Excellence
Withum
 
Administering power platform deployment planning
Dipti Chhatrapati
 
Power Platform Governance Webinar
Runpipe
 
Ideas & Inspiration: Getting Started & Driving Success With Power Platform At...
Richard Harbridge
 
PL-100 Microsoft Power Platform App Maker
Nanddeep Nachan
 
Team Nation 2022 - How to choose between Dataverse, SQL Azure, SharePoint lis...
serge luca
 
Dataverse meets Teams: low code app opportunities for everyone
Jukka Niiranen
 

What's hot (20)

PDF
Getting Started & Driving Success With Power Platform At Scale
Richard Harbridge
 
PPTX
Introduction to Power Platform
Praveen Nair
 
PDF
IIBA® Sydney Unlocking the Power of Low Code No Code: Why BAs Hold the Key
AustraliaChapterIIBA
 
PPTX
Explore Microsoft Power Platform Center of Excellence
Nanddeep Nachan
 
PPTX
Power Apps - Data governance, compliance and security
Learning SharePoint
 
PPTX
Microsoft power platform
Jenkins NS
 
PPTX
Power Platform Governance
Daniel Laskewitz
 
PPTX
Microsoft power platform
Michael Stephenson
 
PPTX
Introduction to power apps
RezaDorrani1
 
PPTX
Intro to power apps
Agusto Sipahutar
 
PPTX
Power BI overview.pptx
HungPham381
 
PPTX
Introduction to Microsoft Power Platform (PowerApps, Flow)
Sam Fernando
 
PDF
Exploring the PowerApps advantage
Malin De Silva
 
PDF
Innovation morning power platform
Claudia Angelelli
 
PPTX
PL-900 Microsoft Power Platform Fundamentals
Nanddeep Nachan
 
PPTX
Power BI Overview, Deployment and Governance
James Serra
 
PPTX
Introduction to PowerApps and Flow
James Milne
 
PPTX
An introduction to microsoft power apps
Mitul Rana
 
PDF
Powerapps & Flow
Xpand IT
 
PDF
Power BI Charts Tutorial | Counter Strike Data Analysis using Power BI | Powe...
Edureka!
 
Getting Started & Driving Success With Power Platform At Scale
Richard Harbridge
 
Introduction to Power Platform
Praveen Nair
 
IIBA® Sydney Unlocking the Power of Low Code No Code: Why BAs Hold the Key
AustraliaChapterIIBA
 
Explore Microsoft Power Platform Center of Excellence
Nanddeep Nachan
 
Power Apps - Data governance, compliance and security
Learning SharePoint
 
Microsoft power platform
Jenkins NS
 
Power Platform Governance
Daniel Laskewitz
 
Microsoft power platform
Michael Stephenson
 
Introduction to power apps
RezaDorrani1
 
Intro to power apps
Agusto Sipahutar
 
Power BI overview.pptx
HungPham381
 
Introduction to Microsoft Power Platform (PowerApps, Flow)
Sam Fernando
 
Exploring the PowerApps advantage
Malin De Silva
 
Innovation morning power platform
Claudia Angelelli
 
PL-900 Microsoft Power Platform Fundamentals
Nanddeep Nachan
 
Power BI Overview, Deployment and Governance
James Serra
 
Introduction to PowerApps and Flow
James Milne
 
An introduction to microsoft power apps
Mitul Rana
 
Powerapps & Flow
Xpand IT
 
Power BI Charts Tutorial | Counter Strike Data Analysis using Power BI | Powe...
Edureka!
 
Ad

Similar to Power platform Bootcamp Bulgaria 2021 - Power Platform Security (20)

PDF
Rumos-MDD-Step Into Power Platform Presentation
pimentelegi
 
PDF
PPT-Deck-Power-Platform-Virtual-Training-Day-Fundamentals.pdf
gdefwy4s5
 
PDF
Microsoft power platform
AYUSHISHARMA295
 
PPTX
Securing the Power Platform - What are my options
Juan Carlos Gonzalez
 
PPTX
Dataverse Permissions Demystified - PowerAddicts BE 11-2022.pptx
Rebekka Aalbers-de Jong
 
PPTX
2018 11-29 - Future Of SharePoint - SharePoint Keynote and Security
Create IT
 
PPTX
Enterprise apps using Microsoft Power Platform
SkandaRamana Suryanarayana
 
PDF
Whitepaper-Power-Platform-ENG.pdf
andinieldananty
 
PDF
Land your data safely and accurately with Power Platform and Azure.pdf
George Grammatikos
 
PDF
Empower Your Organization with Microsoft Power Platform
David J Rosenthal
 
PDF
The Future of Project Management from Microsoft
David J Rosenthal
 
PDF
Patron Power Platfom Community September 2021 Webinar
Robert Crane
 
PPTX
Microsoft DirectAccess Remote Access (VPN) with Windows 10 and Server 2012
Kemp
 
PDF
Application Lifecycle Management (ALM).pdf
Amitesh Raikwar
 
PDF
O365Con18 - Deep Dive into Microsoft 365 - Jussi Roine
NCCOMMS
 
PPTX
Webinar Mastering Microsoft Security von Baggenstos
JenniferMete1
 
PPT
Data power use cases
sflynn073
 
PPT
20220205 Getting started with power bi
Aroh Shukla
 
PPTX
Microsoft Intune y Gestión de Identidad Corporativa
Plain Concepts
 
PPTX
PL-400T00A-ENU-PowerPoint_03.pptx - Power Platform
Blacklight28
 
Rumos-MDD-Step Into Power Platform Presentation
pimentelegi
 
PPT-Deck-Power-Platform-Virtual-Training-Day-Fundamentals.pdf
gdefwy4s5
 
Microsoft power platform
AYUSHISHARMA295
 
Securing the Power Platform - What are my options
Juan Carlos Gonzalez
 
Dataverse Permissions Demystified - PowerAddicts BE 11-2022.pptx
Rebekka Aalbers-de Jong
 
2018 11-29 - Future Of SharePoint - SharePoint Keynote and Security
Create IT
 
Enterprise apps using Microsoft Power Platform
SkandaRamana Suryanarayana
 
Whitepaper-Power-Platform-ENG.pdf
andinieldananty
 
Land your data safely and accurately with Power Platform and Azure.pdf
George Grammatikos
 
Empower Your Organization with Microsoft Power Platform
David J Rosenthal
 
The Future of Project Management from Microsoft
David J Rosenthal
 
Patron Power Platfom Community September 2021 Webinar
Robert Crane
 
Microsoft DirectAccess Remote Access (VPN) with Windows 10 and Server 2012
Kemp
 
Application Lifecycle Management (ALM).pdf
Amitesh Raikwar
 
O365Con18 - Deep Dive into Microsoft 365 - Jussi Roine
NCCOMMS
 
Webinar Mastering Microsoft Security von Baggenstos
JenniferMete1
 
Data power use cases
sflynn073
 
20220205 Getting started with power bi
Aroh Shukla
 
Microsoft Intune y Gestión de Identidad Corporativa
Plain Concepts
 
PL-400T00A-ENU-PowerPoint_03.pptx - Power Platform
Blacklight28
 
Ad

More from Dipti Chhatrapati (18)

PPTX
Entrepreneurship & Innovation – a new DNA to Success
Dipti Chhatrapati
 
PPTX
Prepare For The Next Decade With Microsoft 365 Hybrid Work at ALI Conference
Dipti Chhatrapati
 
PPTX
Teams Calling Teams at Aseans MS Women Meetup
Dipti Chhatrapati
 
PPTX
Grow your SharePoint development platform with SharePoint Framework
Dipti Chhatrapati
 
PPTX
Microsoft365 developer opportunity welcome keynote
Dipti Chhatrapati
 
PPTX
Building share point framework solutions
Dipti Chhatrapati
 
PPTX
Developing business applications via power platform build2019
Dipti Chhatrapati
 
PPTX
Introduction to graph services
Dipti Chhatrapati
 
PPTX
Grow your SharePoint development platform with SPFx
Dipti Chhatrapati
 
PPTX
SPS Bangalore 2018 Opening
Dipti Chhatrapati
 
PPTX
SPS Bangalore 2018 - SharePoint Hybrid
Dipti Chhatrapati
 
PPTX
Being INSIGHTFUL is the only way to get on SharePoint Hybrid !
Dipti Chhatrapati
 
PPTX
Microsoft Business Platform for real time applications
Dipti Chhatrapati
 
PPTX
Share point 2016 end user training module 1 - introduction
Dipti Chhatrapati
 
PPTX
Share point 2016 end user training overview
Dipti Chhatrapati
 
PPTX
Custom Connectors for Microsoft Flow - Your Service Is My Command
Dipti Chhatrapati
 
PPTX
Automating your tasks with microsoft flow
Dipti Chhatrapati
 
PPTX
Microsoft Graph API - A Single Stop For Your Cloud Solution
Dipti Chhatrapati
 
Entrepreneurship & Innovation – a new DNA to Success
Dipti Chhatrapati
 
Prepare For The Next Decade With Microsoft 365 Hybrid Work at ALI Conference
Dipti Chhatrapati
 
Teams Calling Teams at Aseans MS Women Meetup
Dipti Chhatrapati
 
Grow your SharePoint development platform with SharePoint Framework
Dipti Chhatrapati
 
Microsoft365 developer opportunity welcome keynote
Dipti Chhatrapati
 
Building share point framework solutions
Dipti Chhatrapati
 
Developing business applications via power platform build2019
Dipti Chhatrapati
 
Introduction to graph services
Dipti Chhatrapati
 
Grow your SharePoint development platform with SPFx
Dipti Chhatrapati
 
SPS Bangalore 2018 Opening
Dipti Chhatrapati
 
SPS Bangalore 2018 - SharePoint Hybrid
Dipti Chhatrapati
 
Being INSIGHTFUL is the only way to get on SharePoint Hybrid !
Dipti Chhatrapati
 
Microsoft Business Platform for real time applications
Dipti Chhatrapati
 
Share point 2016 end user training module 1 - introduction
Dipti Chhatrapati
 
Share point 2016 end user training overview
Dipti Chhatrapati
 
Custom Connectors for Microsoft Flow - Your Service Is My Command
Dipti Chhatrapati
 
Automating your tasks with microsoft flow
Dipti Chhatrapati
 
Microsoft Graph API - A Single Stop For Your Cloud Solution
Dipti Chhatrapati
 

Recently uploaded (20)

PDF
Pink Cute Simple Group Project Presentation.pdf
francesloreen01
 
PDF
Chembond Chemicals Limited Presentation 2025
Chembond Chemicals Limited
 
PPTX
Market and Demand Analysis.pptx for Management students
DrKavitaRani2
 
PPTX
Enterprises are Classified into Two Categories
Vidhyapriyadharshini1
 
PPTX
PwC consulting Powerpoint Graphics 2014 templates
tjmajingyan
 
PDF
757557697-CERTIKIT-ISO22301-Implementation-Guide-v6.pdf
purdiantayo1
 
PDF
Investment in CUBA. Basic information for United States businessmen (1957)
Movimiento C40
 
PDF
From Legacy to Velocity: how we rebuilt everything in 8 months.
Product-Tech Team
 
PPTX
Capital Investment in IS Infrastracture and Innovation (SDG9)
ephryllaneb
 
PDF
El futuro empresarial 2024 una vista gen
dannflolo1
 
DOCX
ola and uber project work (Recovered).docx
amruteshk277
 
PPTX
UNIT 3 INTERNATIONAL BUSINESS [Autosaved].pptx
pratyanshvish01
 
PDF
Handouts for Housekeeping.pdfhsjsnvvbdjsnwb
MarkallainFrancisco
 
PDF
Nante Industrial Plug Socket Connector Sustainability Insights
gdhdgee963
 
PDF
the role of manager in strategic alliances
AdvisorCampaigns
 
PPTX
Business Research Methods- Secondary Data
DanielOdhiambo9
 
PPT
BCG内部幻灯片撰写. slide template BCG.slide template
d746tpyhkt
 
DOCX
Center Enamel Enabling Precision and Sustainability in the Netherlands' Advan...
cecvessels
 
PPTX
Side hustles: 14 powerful tips to embrace the future of work
Reversed Out Creative
 
PDF
The Impact of Immigration on National Identity (www.kiu.ac.ug)
publication11
 
Pink Cute Simple Group Project Presentation.pdf
francesloreen01
 
Chembond Chemicals Limited Presentation 2025
Chembond Chemicals Limited
 
Market and Demand Analysis.pptx for Management students
DrKavitaRani2
 
Enterprises are Classified into Two Categories
Vidhyapriyadharshini1
 
PwC consulting Powerpoint Graphics 2014 templates
tjmajingyan
 
757557697-CERTIKIT-ISO22301-Implementation-Guide-v6.pdf
purdiantayo1
 
Investment in CUBA. Basic information for United States businessmen (1957)
Movimiento C40
 
From Legacy to Velocity: how we rebuilt everything in 8 months.
Product-Tech Team
 
Capital Investment in IS Infrastracture and Innovation (SDG9)
ephryllaneb
 
El futuro empresarial 2024 una vista gen
dannflolo1
 
ola and uber project work (Recovered).docx
amruteshk277
 
UNIT 3 INTERNATIONAL BUSINESS [Autosaved].pptx
pratyanshvish01
 
Handouts for Housekeeping.pdfhsjsnvvbdjsnwb
MarkallainFrancisco
 
Nante Industrial Plug Socket Connector Sustainability Insights
gdhdgee963
 
the role of manager in strategic alliances
AdvisorCampaigns
 
Business Research Methods- Secondary Data
DanielOdhiambo9
 
BCG内部幻灯片撰写. slide template BCG.slide template
d746tpyhkt
 
Center Enamel Enabling Precision and Sustainability in the Netherlands' Advan...
cecvessels
 
Side hustles: 14 powerful tips to embrace the future of work
Reversed Out Creative
 
The Impact of Immigration on National Identity (www.kiu.ac.ug)
publication11
 

Power platform Bootcamp Bulgaria 2021 - Power Platform Security

  • 1. Global Power Platform Bootcamp, Bulgaria 2021 Crack the insecurity with Power Platform Security - Dipti Chhatrapati, Modern Workplace Architect, AIS. Global Power platform Bootcamp Bulgaria 2021
  • 2. Thanks to our Sponsors With the support of: Global Power platform Bootcamp Bulgaria 2021
  • 3. Agenda Tenant Level Access Control Environment Isolation Resource-level security Connection security and DLP Dataverse Access Levels Balance the privileges Separate illusion from the reality Make a promise to be secured Set the relationships & boundaries Organize realistic routine 1 2 3 4 5 Global Power platform Bootcamp Bulgaria 2021
  • 4. Security is built into every layer of the stack. Resource permissions Microsoft Dataverse security Dev Test Environment Prod Tenant access & isolation 1 3 4 5 2 Environment access & strategy Connector access and data loss policies Global Power platform Bootcamp Bulgaria 2021
  • 5. Tenant Level Access Control Power Apps Power Automate Internal user cannot establish a connection using external tenant credentials External user cannot establish a connection using internal tenant credentials INTERNAL TENANT EXTERNAL TENANT Power Apps Power Automate 1 AAD Conditional policies by Device/Location/User/Group Global Power platform Bootcamp Bulgaria 2021
  • 6. Environment Isolation Restrict environment creation to Power Platform/Dynamic 365 Admins only Provision personal apps in Default and non-personal apps in Sandbox/Production env. •Dev/Test/Production environments for specific business groups or application Configure DLP policies for all environments to restrict connectors Non-default and non-developer environments with Dataverse can be restricted with specific AAD security group. 2 Global Power platform Bootcamp Bulgaria 2021
  • 7. Resource Level Security Share via Security Role Co- Ownership to Share Co- Ownership to Edit Co- Ownership to Use Canvas App Canvas App • To edit, update and delete this flow. • access the run history and add or remove other owners. Cloud Flow Model Driven App • Environment Admin • Environment Maker • Basic User • System Admin • System Customizer 3 Global Power platform Bootcamp Bulgaria 2021
  • 8. Connectors and Data Loss Prevention Policies Data Connectors Connection Power Platform Resources 4 Global Power platform Bootcamp Bulgaria 2021
  • 9. Connectors and Data Loss Prevention Policies Connectors Grouping – Business/Non-Business/Blocked Tenant Level and Environment Level DLP policies Set policies using connectors/Admin center/PowerShell 4 Most restrictive DLP – Default/new environment (Tenant, all env. except ) Org Productivity DLP – LOB environments ( Tenant , Include env.) Org IT management DLP - Central IT environment ( Tenant , Include env.) Special Env DLP – Special Application Environment ( Environment, Single Env.) Global Power platform Bootcamp Bulgaria 2021
  • 10. Microsoft Dataverse Security Field Level Security Record level security Business Units and Teams Security Roles and Privileges ( Users/Teams) Read-Create-Update Create-Read-Write-Delete-Append-Append To-Assign-Share Security boundary for the users data / work with security role’s scope Environment Admin - Environment Maker - Common Data Service User - System Admin - System Customizer 5 Global Power platform Bootcamp Bulgaria 2021
  • 11. Default BU BU 1 BU 1.1 BU 1.1.1 BU 1.2 BU 2 BU 2.1 BU 2.2 BU 2.2.2 Tamra Jeramy Lucas Ren Gavin Ross Tobias Weston Tom Dipti Record Scope Who can access? Create-Read-Write-Delete-Append- Append To-Assign-Share Global Anyone in the organization Deep Any user from assigned business unit and it’s child business unit Local Any user from assigned business unit Basic User who owns Record Level Security Epic Manager Security Role Create Read Write Delete  Anyone can create record  Tamra can only read all records from BU 1/1.2/1.1/1.1.1 User experience with Epic Manager Security Role  Lucas can only write records from BU 1.1  Ross can only delete record created by him in BU 2.1 Global Power platform Bootcamp Bulgaria 2021
  • 12. DEMO How user connects to external tenant which should be restricted? How environments can be restricted? How are resources shared with users/Security groups? How are connectors grouped with DLP? How records can be secured via security roles/scopes? Global Power platform Bootcamp Bulgaria 2021
  • 13. Thank you for joining! With the support of: Join Dynamic 365 Trial Tenant: https://docs.microsoft.com/en- us/dynamics365/marketing/trial-signup Administering Power Platform : https://docs.microsoft.com/en-us/power- platform/admin/admin-documentation Power Platform Best Practices: https://docs.microsoft.com/en-us/power- platform/guidance/adoption/methodology Global Power platform Bootcamp Bulgaria 2021