Hi, recently in my project, I had a requirement to enable Data encryption feature that is new to CRM 2013. While enabling and proving the key, we got an error – “The user account for enabling Data Encryption should be a member of the PrivUserGroup in active directory.
We had to contact our AD support team and they asked for the PrivUserGroup specific to our organization. How would you actually know what? Well there is way.
Open SQL server management studio and in your organization database, execute the below query
select ReportingGroupName, SqlAccessGroupName, PrivReportingGroupName from OrganizationIn
The query output will be in the following format – <Your domain name>\<Groupname> {Guid value}
Examples of the group formats
- <Your domain name>\ReportingGroup {d367569e-489f-46ea-b427-eaab03087d7d}
- <Your domain name>\PrivReportingGroup{d367569e-489f-46ea-b427-eaab03087d7d}
- <Your domain name>\SQLAccessGroup {d367569e-489f-46ea-b427-eaab03087d7d}
The query won’t provide the PrivUserGroup value. However it is quite easy. If you check if the results from the previous query, you will notice the Guid for each of the reporting groups is same.
So you PrivUserGroup will be in format specified below
- <Your domain name>\PrivUserGroup {d367569e-489f-46ea-b427-eaab03087d7d}
All you now need to is provide the group names to the AD team and they should be able to help you out.
Hope this helps!
Discover more from Debajit's Power Apps & Dynamics 365 Blog
Subscribe to get the latest posts sent to your email.
Comments are closed.