Edit

Share via

Add a new Deployment Administrator

  • Article

You can grant or remove the Deployment Administrator role in the Deployment Administrators node in Deployment Manager.

Tip

You can implement the procedure described here by using a Windows PowerShell cmdlet. For more information, see Using Windows PowerShell to perform Deployment Manager tasks.

Add a Deployment Administrator

  1. In the console tree, right-click Deployment Administrators, and then select New Deployment Administrator.

  2. In the Select User dialog box, in the Enter object name to select box, type the name of a user, who must exist in Active Directory, and then select Check Names.

  3. After the user name is accepted, select OK.

  4. Add the deployment administrator to the PrivUserGroup Active Directory security group

Permissions required deployment administration tasks

In addition to Deployment Administrators role membership, additional permissions are required to perform deployment administration tasks:

  • Be a member of the Administrators group on all computers that are running the Dynamics 365 Deployment Administration or Deployment Tools server roles.
  • Have Program Files folder read and write permission on the local computer where Deployment Manager is running.
  • Be a member of the Administrators group on the local computer where the instance of SQL Server is located that will be used to store the Dynamics 365 Customer Engagement (on-premises) databases.
  • Have sysadmin membership on the instance of SQL Server that will be used to store the Dynamics 365 Customer Engagement (on-premises) databases.
  • Have Active Directory organizational unit and security group creation and add membership permission to the organizational and security groups used by Dynamics 365 Server.

Add the deployment administrator to the PrivUserGroup Active Directory security group

  1. Open the Active Directory Users and Computers snap-in on a computer that's in the same domain where Dynamics Server is deployed.

  2. Select the Users folder from the right navigation pane.

  3. Right-click the user name that you added as a deployment administrator in the earlier step, and then select Add to group.

  4. In the Select Groups dialog box, type privusergroup in the Enter the object names to select text box, make sure the active directory name is PrivUserGroup_OUname, where OUname is the name of the Active Directory organizational unit where the security groups that are used by Dynamics 365 Customer Engagement are located, and then select Check Names.

    The name is resolved in the Select Groups dialog box.

  5. Select OK, and then close Active Directory Users and Computers.

See also

Deployment Administrators
Remove a Deployment Administrator