Object Level Security in Salesforce

 

Salesforce Object Level Security provides the simplest way to control data access. It prevents a user or group of users from creating, viewing, editing, or deleting any records of an object by setting permissions on that object.

There are two ways of setting object permissions:

1. Profiles: 

It determines the objects a user can access and the permissions a user has on any object record.

2. Permission Sets:

 It provides additional permissions and access settings to users.

 

 Profiles

 

Profile is a collection of settings and permissions that determine which data and features in the platform users have access to.

Settings determine what users can see for example apps, tabs, fields, and record types whereas Permission determine what users can do for example create or edit records of a certain type, run reports and customize the app.

 

Profiles Control:

  • Object Permission
  • Field Permission
  • User Permission
  • Tab Settings
  • App Settings
  • Apex class access
  • Visualforce page access
  • Page Layouts
  • Record Types
  • Login Hours
  • Login IP Ranges

Profiles are typically defined by a user’s job function but anything that makes sense in an organization can be created as a profile. The platform includes a set of standard profiles. Each of the standard profiles includes a default set of permissions for all of the standard objects available on the platform.

Some of them are:

 

1. Standard User:

Standard User profile has Read, Edit, and Delete permissions to most standard objects.

 

2. Read Only: 

Read-only user had permissions exactly similar to standard user but limits the access to read-only.

 

3. Marketing User: 

Permissions of Standard User+ Additional Permissions.

 

4. Contract Manager:

Permissions of Standard User + Additional Permissions.

 

5. Solution Manager:

Permissions of Standard User + Additional Permissions.

 

6. System Administrator:

The System Administrator profile has the widest access to data and the greatest ability to configure and customize Salesforce. The System Administrator profile also includes two special permissions namely “View All Data” and “Modify All Data”.

When a custom object is created most profiles except those with modify all data permission do not give access to that custom object.

 

Note:

  1. Object permissions on the Standard profile cannot be edited.
    -So to overcome through this it is good to make copies/clones of standard profiles and then customize the copies to fit the needs of the organization.
    -The profile functionality in an organization depends on the user license type.
  2. Every profile should have at least one visible app.
  3.  If an app is visible, its tab won’t show up unless a profile has permissions to view the associated objects.
  4.  A profile can be assigned to many users but the user can be assigned to only one profile at a time.

Next up is Field Level Security

Our Recent Blog

How to Prepare for Placement drives?

By Siddhika Jain  / 30 Jul, 2021
In the 12th Episode of #AsktheHulk Series Sharon Thomas raised the question “How to Prepare for Placement drives?”
Read More

How to Start Freelancing to Improve the Skills and Increase the Income?

By Siddhika Jain  / 28 Jul, 2021
Shubham Jiaswal raised the question “How to start freelancing to improve the skills and increase the income?”
Read More
How to Create your First Approval Process

How to Create your First Approval Process

By khushali jain  / 26 Jul, 2021
Learn everything about the most important topic Sharing Rules in Salesforce Here. Know its types and considerations of using it.
Read More

Why are companies not hiring freshers even if they are Salesforce certified?

By Siddhika Jain  / 23 Jul, 2021
In the 10th episode of the #AskTheHulk series of Salesforce Hulk Vaishnavi Badekar raised the question “Why Companies are not hiring freshers even if they are Salesforce certified?”
Read More

How to learn Salesforce Development even if you are from a Non-Tech background?

By Siddhika Jain  / 21 Jul, 2021
In the 7th episode of the AsktheHulk series, Gourav asked the question through the Youtube comment that “SALESFORCE MARKETING CLOUD CONSULTANT vs DEVELOPER as a career option?”
Read More
A Quick Glance At The Salesforce Lead Process

A Quick Glance At The Salesforce Lead Process

By khushali jain  / 21 Jul, 2021
Learn everything about the most important topic Lead Process in Salesforce Here. Have a detailed knowledge about its steps.
Read More

SALESFORCE QA or BUSINESS ANALYST which one is better?

By Siddhika Jain  / 16 Jul, 2021
In the 7th episode of the AsktheHulk series, Gourav asked the question through the Youtube comment that “SALESFORCE MARKETING CLOUD CONSULTANT vs DEVELOPER as a career option?”
Read More

SALESFORCE MARKETING CLOUD CONSULTANT vs SALESFORCE DEVELOPER as a Career Option

By Siddhika Jain  / 13 Jul, 2021
In the 7th episode of the AsktheHulk series, Gourav asked the question through the Youtube comment that “SALESFORCE MARKETING CLOUD CONSULTANT vs DEVELOPER as a career option?”
Read More
What are ‘Sharing Rules’ in Salesforce? Its Types and Considerations of Using It

What are ‘Sharing Rules’ in Salesforce? Its Types and Considerations of Using It

By khushali jain  / 02 Jul, 2021
Learn everything about the most important topic Sharing Rules in Salesforce Here. Know its types and considerations of using it.
Read More

How to become active in the Salesforce community and create your own name?

By Siddhika Jain  / 01 Jul, 2021
In the 6th episode of the Ask The Hulk series, Abhishek raised the question “How to become active in the Salesforce community and create your own name?”
Read More
Share This Post