Get PrivUserGroup specific to your CRM Organization in Microsoft Dynamics CRM

Hi, recently in my project, I had a requirement to enable Data encryption feature that is new to CRM 2013. While enabling and proving the key, we got an error – “The user account for enabling Data Encryption should be a member of the PrivUserGroup in active directory.

We had to contact our AD support team and they asked for the PrivUserGroup specific to our organization. How would you actually know what? Well there is way.

Open  SQL server management studio and in your organization database, execute the below query

select ReportingGroupName, SqlAccessGroupName, PrivReportingGroupName from OrganizationIn

The query output will be in the following format – <Your domain name>\<Groupname> {Guid value}

Examples of the group formats

  1. <Your domain name>\ReportingGroup {d367569e-489f-46ea-b427-eaab03087d7d}
  2. <Your domain name>\PrivReportingGroup{d367569e-489f-46ea-b427-eaab03087d7d}
  3. <Your domain name>\SQLAccessGroup {d367569e-489f-46ea-b427-eaab03087d7d}

The query won’t provide the PrivUserGroup value. However it is quite easy. If you check if the results from the previous query, you will notice the Guid for each of the reporting groups is same.

So you PrivUserGroup will be in format specified below

  1. <Your domain name>\PrivUserGroup {d367569e-489f-46ea-b427-eaab03087d7d}

All you now need to is provide the group names to the AD team and they should be able to help you out.

Hope this helps!


Discover more from Debajit's Power Apps & Dynamics 365 Blog

Subscribe to get the latest posts sent to your email.

Comments are closed.

Discover more from Debajit's Power Apps & Dynamics 365 Blog

Subscribe now to keep reading and get access to the full archive.

Continue reading