Authorization Box Online Help
In This Topic
    Welcome to Authorization Box
    In This Topic

    Authorization Box is a web-based application in which you can manage and control authorizations. It is linked directly to Dynamics NAV databases, so any changes are directly effective if desired, both in Authorization Box and in Dynamics NAV.

    Authorization Box consists of 3 modules:


    Monitoring gives insight into Critical Permissions and the implemented Segregation of Duties (SoD). The analysis helps you to find incorrect permissions in Permission Sets, organization roles and user accounts. Furthermore, the module analyzes for conflicts in assignation of authorizations. According to SOx regulations, top management must be ‘in control’ and has to provide insight into the effectiveness of the SoD as part of the application controls. SoD Monitoring is an audit tool that helps management to remain ‘in control’.

    Authorization Framework

    Authorization Box authorizes users in Dynamics NAV per database through a hierarchical Organization Chart. In the Organization Chart you create Departments and Organization Roles. Permission Sets or Permission Set Groups are linked to Organization Roles. Organization Roles are assigned to users through Authorization Requests. Any change in the authorization design is directly (or per start date / end date) synchronized to Dynamics NAV or will be synchronized after approval of the request. Creating and modifying the organization structure can be done through the Authorization Box interface and in Excel.

    User Management

    User management in Authorization Box supports a workflow for Authorization Requests with optional approval. This enables assignment of responsibility for creating new accounts to officers who are responsible, instead of application management or the IT-department. It is possible to create an Authorization Request for users to assign an Organization role. If you want, you can link this to a Company or Company Group. In case of resignation or change of function you can revoke the Organization Roles directly or by an end date.