X++ Security [AX 2012]

Updated: March 30, 2011

Applies To: Microsoft Dynamics AX 2012 R3, Microsoft Dynamics AX 2012 R2, Microsoft Dynamics AX 2012 Feature Pack, Microsoft Dynamics AX 2012

This section contains some advice to help you code in X++ in a more secure manner and contains the following topics:

Topic	Description
Code Access Security	Explains how to use Code Access Security.
Secured APIs	Lists the APIs that require various permission classes to call them.
APIs Turned Off by Default	Lists the APIs that are turned off by default in Microsoft Dynamics AX.
Security on Display and Edit Methods	Explains the risk in using display and edit methods and the ways to mitigate this risk.
Record Level Security	Explains the situation where record level security is not in force, how to identify it, and how to mitigate it.
Ranges for Data Sets	Explains how to set ranges for data sets so that they cannot be changed.
Best Practices: Avoiding Potential Security Issues	Provides guidelines for avoiding security issues.

Note
Before you use an API, make sure that you examine the class documentation for it to determine whether there are some suggestions about how to call the API more securely.

See also

How to: Secure an API on the AOS

Announcements: New book: "Inside Microsoft Dynamics AX 2012 R3" now available. Get your copy at the MS Press Store.