Salesforce Developers, profile picture
Uploaded bySalesforce Developers
PDF, PPTX1,523 views

Setting up Security in Your Salesforce Instance

The document discusses setting up security and access controls in Salesforce. It provides examples of how to configure profiles to control what users can see and modify. It also explains how to set up sharing rules to determine access to records at the object, field, and record level. Specific examples include allowing all sales teams to see accounts but only modify contacts for their own accounts, and making opportunities private except for amounts under $10,000. The document emphasizes defining user profiles and mapping them to object and field access levels based on business needs.

Technology
In this document
Powered by AI

Introduction of presenters Naveen Gabrani and Joseph Dindinger; overview of topics regarding security setup.

Discusses access levels (No access, View, Write, Delete) and the importance of security in managing data visibility based on user profiles.

Explains layered access structure, including Org, Objects, Records, and different profiles for user groups.

Details on controlling access to data, types of sharing rules (private, public), and the implications for users.

Describes various access options such as Read Only, Read/Write and their strategic role in data management.

Explains manual, rule-based, and programmatic sharing strategies with an example of account sharing settings.

Specific sharing settings for Contacts and Opportunities, outlining strategic changes for access control.

Discusses real-world scenarios involving sharing rules for accessibility to data with programmatic solutions.

Shows coding examples and best practices for managing sharing via programming, including triggers and asynchronous handling.

Overview of Permission Sets vs Profiles and their impact on access control and data management.

Thank you slide and invitation for feedback with a chance to win a GoPro prize.

Embed presentation

Download as PDF, PPTX
Setting up security ​ Naveen Gabrani Joseph Dindinger ​ CEO CEO ​ ngabrani@astreait.com TO A FINISH ​ @ngabrani ​ 
​ Safe harbor statement under the Private Securities Litigation Reform Act of 1995: ​ This presentation may contain forward-looking statements that involve risks, uncertainties, and assumptions. If any such uncertainties materialize or if any of the assumptions proves incorrect, the results of salesforce.com, inc. could differ materially from the results expressed or implied by the forward-looking statements we make. All statements other than statements of historical fact could be deemed forward- looking, including any projections of product or service availability, subscriber growth, earnings, revenues, or other financial items and any statements regarding strategies or plans of management for future operations, statements of belief, any statements concerning new, planned, or upgraded services or technology developments and customer contracts or use of our services. ​ The risks and uncertainties referred to above include – but are not limited to – risks associated with developing and delivering new functionality for our service, new products and services, our new business model, our past operating losses, possible fluctuations in our operating results and rate of growth, interruptions or delays in our Web hosting, breach of our security measures, the outcome of any litigation, risks associated with completed and any possible mergers and acquisitions, the immature market in which we operate, our relatively limited operating history, our ability to expand, retain, and motivate our employees and manage our growth, new releases of our service and successful customer deployment, our limited history reselling non-salesforce.com products, and utilization and selling to larger enterprise customers. Further information on potential factors that could affect the financial results of salesforce.com, inc. is included in our annual report on Form 10-K for the most recent fiscal year and in our quarterly report on Form 10-Q for the most recent fiscal quarter. These documents and others containing important disclosures are available on the SEC Filings section of the Investor Information section of our Web site. ​ Any unreleased services or features referenced in this or other presentations, press releases or public statements are not currently available and may not be delivered on time or at all. Customers who purchase our services should make the purchase decisions based upon features that are currently available. Salesforce.com, inc. assumes no obligation and does not intend to update these forward-looking statements. Safe Harbor
Naveen Gabrani CEO, Astrea IT Services Pvt Ltd
​  §  Security: Who has access to what records §  What type of access: No access, View, Write, Delete §  Scenarios Importance of Security Criteria Access Level Profile Opportunity value > 1 Million Visible Sales persons Account in California Editable Sales team in CA Cases Visible All organization
§  Talk to senior users and management §  What tasks different users need to perform §  What all information needs to be kept secure §  Classify your users into groups that perform similar operations §  Map your objects to these user groups §  What level of visibility is needed Design of Security
Access is a many layered thing.... ORG ACCESS OBJECT ACCESS RECORD ACCESS FIELD ACCESS IP RANGES,LOGIN HOURS PROFILES ROLE HIERARCHY FIELD LEVEL SECURITY
§  Profiles: Group of users that perform similar operations §  Sales Team based in Boston §  Customer Service Project Managers §  Call center agents for European customers §  Each user is mapped to a unique profile Profiles
§  Minimum access needed for all the Salesforce users to an object §  Possible Values §  Private §  Public Read Only §  Public Read/Write OWD: Organization Wide Default
Role Hierarchy CEO VP Sales Sales Director International Sales Director US VP Projects Project Manager A Manager has access to all records that are accessible to its reportees ü  “Grant Access Using Hierarchies” Record owner and Salesforce Admin have access to all records Master Detail relationship, child inherits OWD from parent View All Data settings: access to all records Each user is mapped to a unique role
Joseph Dindinger CEO, To A Finish LLC
​  §  Control access to company data §  Rules for sharing access to data §  Accounts §  Contacts §  Widgets_c §  Etc. What ARE sharing rules?
Access to objects Access to fields Access to features What sharing rules are NOT.
Private Sharing Rules Starting Point Public
​  §  Read Only §  Read Write §  Full Access Different Types of Access ​  §  Transfer §  Use
§  Public Read/Write §  Public Read Only §  Private §  Controlled by Parent §  Grant Access Using Hierarchies Common Sharing Settings
Manual Sharing Sharing Settings Strategies Rule-based Sharing Programmatic Sharing
Sharing Rules Scenario
​ Cars X provides high-end cars for executives around the world. Sales reps at Cars X are given full access to all accounts, but can only edit contacts that belong to them. Opportunities are strictly private; only the sales rep and his or her management tree are allowed to see them. ​ * Note: Some opportunities, those under $10,000 should be seen by everyone.
​ We must set the Accounts to: ​ Public Read/ Write (Default) Step 1: Account Sharing Settings
We must set the Contacts to: Public Read Only (change from Controlled by Parent) Step 2: Contact Sharing Settings
§  We must set the Opportunities to: Private (Change from Public Read Only) §  We must add a sharing rule to give read only access to sales reps who share roles Step 3a: Opportunity Sharing Settings
§  We must add a sharing rule based on specific criteria to give read only access to any opportunity below $10k Step 3b: Opportunity Sharing Settings
Sharing Rules Demo
Sharing Settings Overview
§  Can be enabled or disabled per object §  Can be confusing and only to be used in cases where rules cannot be made to fit §  Needs maintenance, especially if ownership changes Manual Sharing
§  The most common solution for most situations §  Extremely powerful and customizable §  Once set, can be forgotten until the rules of business change Rule-based Sharing
§  If default settings don't work §  If roles don't fit the bill §  If rules can't be written §  If manual sharing is too tedious and error prone... ​ THEN you can use Apex programing to share records correctly Programmatic Sharing
Programming Scenario
​ Cars X hires drivers in each state who will take a car from the dealer and drive it to the buyer’s house. These drivers are in the Cars X Partner Community and should be able to edit only three fields on Closed Opportunities in their assigned states. The three fields they can edit are: 1.  Assigned Driver (a lookup to the User object) 2.  Target Delivery Date 3.  Date Delivered ​ * Note: Once the Assigned Driver field has been saved, all other drivers should no longer be able to see the opportunity.
Programming Sample Code
Sample 1: Trigger to Share Code
Sample 2: Trigger to Remove Share
Sample 3: Trigger Handler Code to do the actual Sharing
§  Think it through with all involved §  Document thoroughly §  “Bulkify” your code carefully and thoroughly §  Set up a log in case of failure §  Use Asynchronous Code (@Future or Batch) Tips for Programming Sharing
Permission Sets & Profiles Overview
§  Which Objects and Fields you can see (not which records) §  Which Features/Functions you can use Permission Sets & Profiles Determine
Permission Sets vs Profiles ​  Differences include : §  The ability to set features across multiple profiles §  Ease of assigning to multiple users
Profiles, Permission Sets & Sharing Rules
Data vs. MetaData Permission Sets & Profiles Sharing Rules
Our Last Scenario Our last scenario could not have been completed without sharing rules AND permission sets/profiles
Thank you
Share Your Feedback, and Win a GoPro! 3 Earn a GoPro prize entry for each completed survey Tap the bell to take a survey2Enroll in a session1

More Related Content

PDF
Getting started with Salesforce security
bySalesforce Admins
 
PDF
Introduction to the Salesforce Security Model
bySalesforce Developers
 
PPTX
Understanding Multitenancy and the Architecture of the Salesforce Platform
bySalesforce Developers
 
PPT
Security and Your Salesforce Org
bySalesforce Admins
 
PPTX
Salesforce Integration Pattern Overview
byDhanik Sahni
 
PPTX
Salesforce Integration Patterns
byusolutions
 
PPTX
Salesforce integration best practices columbus meetup
byMuleSoft Meetup
 
PPTX
Sharing and security in Salesforce
bySaurabh Kulkarni
 
Getting started with Salesforce security
bySalesforce Admins
 
Introduction to the Salesforce Security Model
bySalesforce Developers
 
Understanding Multitenancy and the Architecture of the Salesforce Platform
bySalesforce Developers
 
Security and Your Salesforce Org
bySalesforce Admins
 
Salesforce Integration Pattern Overview
byDhanik Sahni
 
Salesforce Integration Patterns
byusolutions
 
Salesforce integration best practices columbus meetup
byMuleSoft Meetup
 
Sharing and security in Salesforce
bySaurabh Kulkarni
 

What's hot

PPTX
Salesforce Overview For Beginners/Students
bySujesh Ramachandran
 
PPT
Salesforce Integration
byJoshua Hoskins
 
PPTX
Integrating with salesforce
byMark Adcock
 
PPTX
Sharing and setting in salesforce
byVishesh Singhal
 
PDF
Managing the Role Hierarchy at Enterprise Scale
bySalesforce Developers
 
PPTX
Salesforce Cross-Cloud Architecture
byThierry TROUIN ☁
 
PPTX
Microsoft Cloud Adoption Framework for Azure: Governance Conversation
byNicholas Vossburg
 
PPTX
Introduction to Salesforce Platform - Basic
bysanskriti agarwal
 
PDF
Azure Information Protection
byRobert Crane
 
PDF
Performing a successful technical debt assessment in Salesforce
byCoforge (Erstwhile WHISHWORKS)
 
PPTX
What Is Salesforce? | Salesforce Training - What Does Salesforce Do? | Salesf...
byEdureka!
 
PDF
Architect day 20181128 - Afternoon Session
bySalesforce - Sweden, Denmark, Norway
 
PPTX
Integrating Salesforce with Microsoft Office through Add-ins
bySalesforce Developers
 
PDF
Secure Salesforce: External App Integrations
bySalesforce Developers
 
PPTX
Salesforce Streaming event - PushTopic and Generic Events
byDhanik Sahni
 
PPTX
Salesforce Intro
byRich Helton
 
PPT
Salesforce Security Model (Dmitry Goshko, Igor Haritonovich)
byYury Bondarau
 
PPTX
Salesforce Marketing Cloud Training | Salesforce Training For Beginners - Mar...
byEdureka!
 
PPTX
Salesforce Marketing cloud
byCloud Analogy
 
PPTX
Deploying & Managing OneDrive
byDrew Madelung
 
Salesforce Overview For Beginners/Students
bySujesh Ramachandran
 
Salesforce Integration
byJoshua Hoskins
 
Integrating with salesforce
byMark Adcock
 
Sharing and setting in salesforce
byVishesh Singhal
 
Managing the Role Hierarchy at Enterprise Scale
bySalesforce Developers
 
Salesforce Cross-Cloud Architecture
byThierry TROUIN ☁
 
Microsoft Cloud Adoption Framework for Azure: Governance Conversation
byNicholas Vossburg
 
Introduction to Salesforce Platform - Basic
bysanskriti agarwal
 
Azure Information Protection
byRobert Crane
 
Performing a successful technical debt assessment in Salesforce
byCoforge (Erstwhile WHISHWORKS)
 
What Is Salesforce? | Salesforce Training - What Does Salesforce Do? | Salesf...
byEdureka!
 
Architect day 20181128 - Afternoon Session
bySalesforce - Sweden, Denmark, Norway
 
Integrating Salesforce with Microsoft Office through Add-ins
bySalesforce Developers
 
Secure Salesforce: External App Integrations
bySalesforce Developers
 
Salesforce Streaming event - PushTopic and Generic Events
byDhanik Sahni
 
Salesforce Intro
byRich Helton
 
Salesforce Security Model (Dmitry Goshko, Igor Haritonovich)
byYury Bondarau
 
Salesforce Marketing Cloud Training | Salesforce Training For Beginners - Mar...
byEdureka!
 
Salesforce Marketing cloud
byCloud Analogy
 
Deploying & Managing OneDrive
byDrew Madelung
 

Similar to Setting up Security in Your Salesforce Instance

PDF
Introducing salesforce shield - Paris Salesforce Developer Group - Oct 15
byParis Salesforce Developer Group
 
PDF
Secure Salesforce: CRUD / FLS / Sharing
bySalesforce Developers
 
PDF
Just-In-Time Sharing Using Apex
bySalesforce Developers
 
PDF
Moving Sharing to a Parallel Architecture
bySalesforce Developers
 
PPTX
Security Boundaries in Apex
bySalesforce Developers
 
PDF
Elevate workshop track1
bySalesforce Developers
 
PPTX
Salesforce sharing and visibility Part 1
byAhmed Keshk
 
PDF
Salesforce Sharing and Security overview for new admins and devs
bySayedMossad1
 
PPT
To Share or Not to Share
bydreamforce2006
 
PPT
Ags001 Wilhoit 091707
byDreamforce07
 
PPTX
Top 5 User Problems Admins Solve by Colleen Burnsed & Meagan Diegalman
bySalesforce Admins
 
PDF
Five Developer Tips Every Admin Needs To Know
bySalesforce Developers
 
PDF
What’s new in summer’15 release - Security & Compliance
byShesh Kondi
 
PDF
What’s new in summer’15 release - Security & Compliance
byShesh Kondi
 
PPTX
How to be a SalesFIERCE Salesforce Admin
byJared Miller
 
PDF
How to be a SalesFIERCE Admin - Jared Miller & Davina Hanchuck
bySalesforce Admins
 
PPT
IT Success with the Winter '07 Release Platform Overview
bydreamforce2006
 
PPT
NYC Admin Zone: Build Your Security Superpowers
bySalesforce Admins
 
PDF
Introduction to Database.com
bySalesforce Developers
 
PDF
ABCs of Security in the Cloud Webinar
bySalesforce Developers
 
Introducing salesforce shield - Paris Salesforce Developer Group - Oct 15
byParis Salesforce Developer Group
 
Secure Salesforce: CRUD / FLS / Sharing
bySalesforce Developers
 
Just-In-Time Sharing Using Apex
bySalesforce Developers
 
Moving Sharing to a Parallel Architecture
bySalesforce Developers
 
Security Boundaries in Apex
bySalesforce Developers
 
Elevate workshop track1
bySalesforce Developers
 
Salesforce sharing and visibility Part 1
byAhmed Keshk
 
Salesforce Sharing and Security overview for new admins and devs
bySayedMossad1
 
To Share or Not to Share
bydreamforce2006
 
Ags001 Wilhoit 091707
byDreamforce07
 
Top 5 User Problems Admins Solve by Colleen Burnsed & Meagan Diegalman
bySalesforce Admins
 
Five Developer Tips Every Admin Needs To Know
bySalesforce Developers
 
What’s new in summer’15 release - Security & Compliance
byShesh Kondi
 
What’s new in summer’15 release - Security & Compliance
byShesh Kondi
 
How to be a SalesFIERCE Salesforce Admin
byJared Miller
 
How to be a SalesFIERCE Admin - Jared Miller & Davina Hanchuck
bySalesforce Admins
 
IT Success with the Winter '07 Release Platform Overview
bydreamforce2006
 
NYC Admin Zone: Build Your Security Superpowers
bySalesforce Admins
 
Introduction to Database.com
bySalesforce Developers
 
ABCs of Security in the Cloud Webinar
bySalesforce Developers
 

More from Salesforce Developers

PDF
Sample Gallery: Reference Code and Best Practices for Salesforce Developers
bySalesforce Developers
 
PDF
Lightning web components - Episode 1 - An Introduction
bySalesforce Developers
 
PDF
LWC Episode 3- Component Communication and Aura Interoperability
bySalesforce Developers
 
PDF
Modern Development with Salesforce DX
bySalesforce Developers
 
PDF
Integrate CMS Content Into Lightning Communities with CMS Connect
bySalesforce Developers
 
PDF
Live coding with LWC
bySalesforce Developers
 
PDF
Migrating CPQ to Advanced Calculator and JSQCP
bySalesforce Developers
 
PDF
Lightning web components - Episode 4 : Security and Testing
bySalesforce Developers
 
PDF
Lightning web components episode 2- work with salesforce data
bySalesforce Developers
 
PDF
Maximizing Salesforce Lightning Experience and Lightning Component Performance
bySalesforce Developers
 
PPTX
CodeLive: Converting Aura Components to Lightning Web Components
bySalesforce Developers
 
PPTX
Enterprise-grade UI with open source Lightning Web Components
bySalesforce Developers
 
PDF
Scale with Large Data Volumes and Big Objects in Salesforce
bySalesforce Developers
 
PDF
Get Into Lightning Flow Development
bySalesforce Developers
 
PPTX
CodeLive: Build Lightning Web Components faster with Local Development
bySalesforce Developers
 
PDF
Replicate Salesforce Data in Real Time with Change Data Capture
bySalesforce Developers
 
PPTX
TrailheaDX India : Developer Highlights
bySalesforce Developers
 
PDF
Local development with Open Source Base Components
bySalesforce Developers
 
PPTX
TrailheaDX and Summer '19: Developer Highlights
bySalesforce Developers
 
PDF
Why developers shouldn’t miss TrailheaDX India
bySalesforce Developers
 
Sample Gallery: Reference Code and Best Practices for Salesforce Developers
bySalesforce Developers
 
Lightning web components - Episode 1 - An Introduction
bySalesforce Developers
 
LWC Episode 3- Component Communication and Aura Interoperability
bySalesforce Developers
 
Modern Development with Salesforce DX
bySalesforce Developers
 
Integrate CMS Content Into Lightning Communities with CMS Connect
bySalesforce Developers
 
Live coding with LWC
bySalesforce Developers
 
Migrating CPQ to Advanced Calculator and JSQCP
bySalesforce Developers
 
Lightning web components - Episode 4 : Security and Testing
bySalesforce Developers
 
Lightning web components episode 2- work with salesforce data
bySalesforce Developers
 
Maximizing Salesforce Lightning Experience and Lightning Component Performance
bySalesforce Developers
 
CodeLive: Converting Aura Components to Lightning Web Components
bySalesforce Developers
 
Enterprise-grade UI with open source Lightning Web Components
bySalesforce Developers
 
Scale with Large Data Volumes and Big Objects in Salesforce
bySalesforce Developers
 
Get Into Lightning Flow Development
bySalesforce Developers
 
CodeLive: Build Lightning Web Components faster with Local Development
bySalesforce Developers
 
Replicate Salesforce Data in Real Time with Change Data Capture
bySalesforce Developers
 
TrailheaDX India : Developer Highlights
bySalesforce Developers
 
Local development with Open Source Base Components
bySalesforce Developers
 
TrailheaDX and Summer '19: Developer Highlights
bySalesforce Developers
 
Why developers shouldn’t miss TrailheaDX India
bySalesforce Developers
 

Recently uploaded

PDF
The Future of Database Diagnostics is a Conversation with Oracle AHF Fleet In...
bySandesh Rao
 
PDF
Build Agentic AI Applications with Oracle AI Database Private Agent Factory
bySandesh Rao
 
PPTX
Discover - Assemble - and Gain Insights into your Content with SharePoint Con...
byDrew Madelung
 
PDF
Case Study: How LKQ Corporation Improved Training Efficiency & Delivery
byRustici Software
 
PDF
November Patch Tuesday
byIvanti
 
PDF
What's Driving Growth in the Video Surveillance Market 2025?
byMemoori
 
PDF
Inclusive India_Samir_Dash_10 NOV_FINAL 2025.pdf
bySamir Dash
 
PPTX
Career Blueprint - Future Career Vision & Success Stories - 2025 - Part 1
byDianaGray10
 
PDF
Getting started with Agent Framework.pdf
byNilesh Gule
 
PDF
Webinar: Introduction to LF Energy SEAPATH
byDanBrown980551
 
PDF
Infuse Intelligence Into your App with Foundry Local
byNilesh Gule
 
PDF
Manage Network Security (Firewall) in RHEL - RHCSA (RH134).pdf
byLinuxCert Guru
 
PDF
MINDCTI Revenue Release Quarter 3 2025 - Financial Presentation
byMIND CTI
 
PPTX
Understanding the digital experience of FE teaching staff in 2024/25
byJisc
 
PDF
IDSECCONF2025 - Aan Wahyu - Maze–Malware Analysis Platform.pdf
byidsecconf
 
PDF
IDSECCONF2025 - Ali - DursGo–Web Security Scanner with AI Analysis.pdf
byidsecconf
 
PDF
IDSECCONF2025 - Budi Rahardjo - Cyber Security and AI.pdf
byidsecconf
 
PDF
OutSystsems User Group Brabant November 2025
bymail496323
 
PDF
Create or Remove files and directories - RHCE.pdf
byLinuxCert Guru
 
PPTX
Conserving precious peatland habitats using mobile apps - Esri UK Welsh Confe...
byEsri UK
 
The Future of Database Diagnostics is a Conversation with Oracle AHF Fleet In...
bySandesh Rao
 
Build Agentic AI Applications with Oracle AI Database Private Agent Factory
bySandesh Rao
 
Discover - Assemble - and Gain Insights into your Content with SharePoint Con...
byDrew Madelung
 
Case Study: How LKQ Corporation Improved Training Efficiency & Delivery
byRustici Software
 
November Patch Tuesday
byIvanti
 
What's Driving Growth in the Video Surveillance Market 2025?
byMemoori
 
Inclusive India_Samir_Dash_10 NOV_FINAL 2025.pdf
bySamir Dash
 
Career Blueprint - Future Career Vision & Success Stories - 2025 - Part 1
byDianaGray10
 
Getting started with Agent Framework.pdf
byNilesh Gule
 
Webinar: Introduction to LF Energy SEAPATH
byDanBrown980551
 
Infuse Intelligence Into your App with Foundry Local
byNilesh Gule
 
Manage Network Security (Firewall) in RHEL - RHCSA (RH134).pdf
byLinuxCert Guru
 
MINDCTI Revenue Release Quarter 3 2025 - Financial Presentation
byMIND CTI
 
Understanding the digital experience of FE teaching staff in 2024/25
byJisc
 
IDSECCONF2025 - Aan Wahyu - Maze–Malware Analysis Platform.pdf
byidsecconf
 
IDSECCONF2025 - Ali - DursGo–Web Security Scanner with AI Analysis.pdf
byidsecconf
 
IDSECCONF2025 - Budi Rahardjo - Cyber Security and AI.pdf
byidsecconf
 
OutSystsems User Group Brabant November 2025
bymail496323
 
Create or Remove files and directories - RHCE.pdf
byLinuxCert Guru
 
Conserving precious peatland habitats using mobile apps - Esri UK Welsh Confe...
byEsri UK
 

Setting up Security in Your Salesforce Instance

  • 1.
    Setting up security ​ NaveenGabrani Joseph Dindinger ​ CEO CEO ​ [email protected] TO A FINISH ​ @ngabrani ​ 
  • 2.
    ​ Safe harbor statementunder the Private Securities Litigation Reform Act of 1995: ​ This presentation may contain forward-looking statements that involve risks, uncertainties, and assumptions. If any such uncertainties materialize or if any of the assumptions proves incorrect, the results of salesforce.com, inc. could differ materially from the results expressed or implied by the forward-looking statements we make. All statements other than statements of historical fact could be deemed forward- looking, including any projections of product or service availability, subscriber growth, earnings, revenues, or other financial items and any statements regarding strategies or plans of management for future operations, statements of belief, any statements concerning new, planned, or upgraded services or technology developments and customer contracts or use of our services. ​ The risks and uncertainties referred to above include – but are not limited to – risks associated with developing and delivering new functionality for our service, new products and services, our new business model, our past operating losses, possible fluctuations in our operating results and rate of growth, interruptions or delays in our Web hosting, breach of our security measures, the outcome of any litigation, risks associated with completed and any possible mergers and acquisitions, the immature market in which we operate, our relatively limited operating history, our ability to expand, retain, and motivate our employees and manage our growth, new releases of our service and successful customer deployment, our limited history reselling non-salesforce.com products, and utilization and selling to larger enterprise customers. Further information on potential factors that could affect the financial results of salesforce.com, inc. is included in our annual report on Form 10-K for the most recent fiscal year and in our quarterly report on Form 10-Q for the most recent fiscal quarter. These documents and others containing important disclosures are available on the SEC Filings section of the Investor Information section of our Web site. ​ Any unreleased services or features referenced in this or other presentations, press releases or public statements are not currently available and may not be delivered on time or at all. Customers who purchase our services should make the purchase decisions based upon features that are currently available. Salesforce.com, inc. assumes no obligation and does not intend to update these forward-looking statements. Safe Harbor
  • 3.
    Naveen Gabrani CEO, AstreaIT Services Pvt Ltd
  • 4.
    ​  §  Security: Whohas access to what records §  What type of access: No access, View, Write, Delete §  Scenarios Importance of Security Criteria Access Level Profile Opportunity value > 1 Million Visible Sales persons Account in California Editable Sales team in CA Cases Visible All organization
  • 5.
    §  Talk tosenior users and management §  What tasks different users need to perform §  What all information needs to be kept secure §  Classify your users into groups that perform similar operations §  Map your objects to these user groups §  What level of visibility is needed Design of Security
  • 6.
    Access is amany layered thing.... ORG ACCESS OBJECT ACCESS RECORD ACCESS FIELD ACCESS IP RANGES,LOGIN HOURS PROFILES ROLE HIERARCHY FIELD LEVEL SECURITY
  • 7.
    §  Profiles: Groupof users that perform similar operations §  Sales Team based in Boston §  Customer Service Project Managers §  Call center agents for European customers §  Each user is mapped to a unique profile Profiles
  • 8.
    §  Minimum accessneeded for all the Salesforce users to an object §  Possible Values §  Private §  Public Read Only §  Public Read/Write OWD: Organization Wide Default
  • 9.
    Role Hierarchy CEO VP Sales SalesDirector International Sales Director US VP Projects Project Manager A Manager has access to all records that are accessible to its reportees ü  “Grant Access Using Hierarchies” Record owner and Salesforce Admin have access to all records Master Detail relationship, child inherits OWD from parent View All Data settings: access to all records Each user is mapped to a unique role
  • 10.
  • 11.
    ​  §  Control accessto company data §  Rules for sharing access to data §  Accounts §  Contacts §  Widgets_c §  Etc. What ARE sharing rules?
  • 12.
    Access to objects Accessto fields Access to features What sharing rules are NOT.
  • 13.
  • 14.
    ​  §  Read Only § Read Write §  Full Access Different Types of Access ​  §  Transfer §  Use
  • 15.
    §  Public Read/Write § Public Read Only §  Private §  Controlled by Parent §  Grant Access Using Hierarchies Common Sharing Settings
  • 16.
  • 17.
  • 18.
    ​ Cars X provideshigh-end cars for executives around the world. Sales reps at Cars X are given full access to all accounts, but can only edit contacts that belong to them. Opportunities are strictly private; only the sales rep and his or her management tree are allowed to see them. ​ * Note: Some opportunities, those under $10,000 should be seen by everyone.
  • 19.
    ​ We must setthe Accounts to: ​ Public Read/ Write (Default) Step 1: Account Sharing Settings
  • 20.
    We must setthe Contacts to: Public Read Only (change from Controlled by Parent) Step 2: Contact Sharing Settings
  • 21.
    §  We mustset the Opportunities to: Private (Change from Public Read Only) §  We must add a sharing rule to give read only access to sales reps who share roles Step 3a: Opportunity Sharing Settings
  • 22.
    §  We mustadd a sharing rule based on specific criteria to give read only access to any opportunity below $10k Step 3b: Opportunity Sharing Settings
  • 23.
  • 24.
  • 25.
    §  Can beenabled or disabled per object §  Can be confusing and only to be used in cases where rules cannot be made to fit §  Needs maintenance, especially if ownership changes Manual Sharing
  • 26.
    §  The mostcommon solution for most situations §  Extremely powerful and customizable §  Once set, can be forgotten until the rules of business change Rule-based Sharing
  • 27.
    §  If defaultsettings don't work §  If roles don't fit the bill §  If rules can't be written §  If manual sharing is too tedious and error prone... ​ THEN you can use Apex programing to share records correctly Programmatic Sharing
  • 28.
  • 29.
    ​ Cars X hiresdrivers in each state who will take a car from the dealer and drive it to the buyer’s house. These drivers are in the Cars X Partner Community and should be able to edit only three fields on Closed Opportunities in their assigned states. The three fields they can edit are: 1.  Assigned Driver (a lookup to the User object) 2.  Target Delivery Date 3.  Date Delivered ​ * Note: Once the Assigned Driver field has been saved, all other drivers should no longer be able to see the opportunity.
  • 30.
  • 31.
    Sample 1: Triggerto Share Code
  • 32.
    Sample 2: Triggerto Remove Share
  • 33.
  • 34.
    §  Think itthrough with all involved §  Document thoroughly §  “Bulkify” your code carefully and thoroughly §  Set up a log in case of failure §  Use Asynchronous Code (@Future or Batch) Tips for Programming Sharing
  • 35.
    Permission Sets &Profiles Overview
  • 36.
    §  Which Objectsand Fields you can see (not which records) §  Which Features/Functions you can use Permission Sets & Profiles Determine
  • 37.
    Permission Sets vsProfiles ​  Differences include : §  The ability to set features across multiple profiles §  Ease of assigning to multiple users
  • 38.
  • 39.
    Data vs. MetaData PermissionSets & Profiles Sharing Rules
  • 40.
    Our Last Scenario Ourlast scenario could not have been completed without sharing rules AND permission sets/profiles
  • 41.
  • 42.
    Share Your Feedback,and Win a GoPro! 3 Earn a GoPro prize entry for each completed survey Tap the bell to take a survey2Enroll in a session1