X++ Security [AX 2012]

Updated: March 30, 2011

Applies To: Microsoft Dynamics AX 2012 R3, Microsoft Dynamics AX 2012 R2, Microsoft Dynamics AX 2012 Feature Pack, Microsoft Dynamics AX 2012

This section contains some advice to help you code in X++ in a more secure manner and contains the following topics:



Code Access Security

Explains how to use Code Access Security.

Secured APIs

Lists the APIs that require various permission classes to call them.

APIs Turned Off by Default

Lists the APIs that are turned off by default in Microsoft Dynamics AX.

Security on Display and Edit Methods

Explains the risk in using display and edit methods and the ways to mitigate this risk.

Record Level Security

Explains the situation where record level security is not in force, how to identify it, and how to mitigate it.

Ranges for Data Sets

Explains how to set ranges for data sets so that they cannot be changed.

Best Practices: Avoiding Potential Security Issues

Provides guidelines for avoiding security issues.


Before you use an API, make sure that you examine the class documentation for it to determine whether there are some suggestions about how to call the API more securely.

Announcements: New book: "Inside Microsoft Dynamics AX 2012 R3" now available. Get your copy at the MS Press Store.