I had a call the other day from a client who was having some issues with security roles. He had just hired a new inside sales rep and had assigned her the same security role as the other reps. But, she wasn’t able to properly access the data the way the others were. He examined the security roles and was unable to see any differences. So, he called me. As he was showing me the security role settings for the new and existing users, I asked him to show me the Team membership of the new user. She was not assigned to any teams. Then I asked to see the teams the existing users belonged to. Sure enough they were in an inside sales team. I asked him to check the security roles assigned to the team. There was one, the Salesperson role. I recommended he add the new user to the team. Problem solved!
CRM 2011 has added a new wrinkle (feature) of Team Ownership of records. In order to own records, a team must have a security role assigned to it. Members of the team acquire the access privileges provided by the team’s security roles.
When troubleshooting security roles in CRM 2011, be sure to check team membership, and the security roles that might be assigned to those teams as well.