You asked; we listened. We’re proud to announce the new Who Sees What Lightning Experience series, updated with the latest best practices on data visibility and access. Follow along with this video series to ensure you’re adhering to the best practice of least privilege access: giving your users the data access they need—and only what they need!
Here we’ll give you info on what to expect from each video. There are some familiar topics, such as role hierarchy and field-level security, with demos and best practices you know and love. We’ll also introduce you to new tools: permission set groups and restriction rules. Best of all, you’ll learn how layers of access work together, so you can understand the big picture of data access and visibility in Salesforce.
Chapter 1: Data Visibility and Access
Let’s start at the very beginning, a very good place to start! You’ll get a high-level overview of the different layers of data access in Salesforce, from giving users access to your organization (org) all the way to determining access to fields.
Chapter 2: Organization Access
One of the first tasks you’ll need to do as an admin is to provide users with access to your org. In this video, we’ll walk through how to set trusted IP ranges and specify hours when users can access the org.
Chapter 3: Control Object Access with Profiles and Permission Sets
Next up, object access. With the announcement that permissions on profiles will retire, you can depend on permission sets to authorize user access to objects. Learn how permission sets allow you to grant permissions and access to only the users who need them.
Chapter 4: How to Use Permission Set Groups
You might be wondering, “That’s an awful lot of permission sets to assign to my users—what if I want to make my life easier?” Permission set groups to the rescue! This video will show you how permission set groups make it easier and faster to maintain multiple permission sets to users.
Chapter 5: Organization-Wide Defaults
By now, you’ve determined the access and permissions users have for records they own. But what about records that users don’t own? Learn how to use org-wide defaults to determine which access and permissions users have for records they don’t own.
Chapter 6: Grant Record Access with Role Hierarchy
Let’s say you’ve set your org-wide defaults to Private or Public Read-Only. What happens if you want to extend record access to certain users, such as granting sales managers access to the opportunities their teams are working on? This video will give you best practices for role hierarchy and how to set it up in Salesforce.
Chapter 7: What Is Field-Level Security?
As an admin, you’ll sometimes want to restrict which fields users can see or edit. In this video, we’ll walk through how to set field-level security in permission sets.
Chapter 8: Record Access with Sharing Rules
Sharing rules allow you to make automatic exceptions to your org-wide sharing settings for selected sets of users. We’ll show you two different ways to set sharing rules: based on record ownership and based on record criteria.
Chapter 9: What Are Record Types?
Users often need access to the same objects, but they may work with different data. Record types allow you to customize which business processes and fields users can see on records. In this video, we’ll walk through each step of creating a new record type.
Chapter 10: Restriction Rules
Meet the newest member of the Who Sees What family—restriction rules! They’re like filters that prevent users from accessing records that may contain sensitive data or information that isn’t essential to their work. Learn how restriction rules work with other layers of access and how to create them in Salesforce.
Resources