salesforce_security_impl_guide
salesforce_security_impl_guide
salesforce_security_impl_guide
You also want an ePaper? Increase the reach of your titles
YUMPU automatically turns print PDFs into web optimized ePapers that Google loves.
Securing and Sharing Data<br />
Setting the External Organization-Wide Defaults<br />
Setting the External Organization-Wide Defaults<br />
External Organization-Wide Defaults enable you to set a different default access level for external<br />
users.<br />
Before you set the external organization-wide defaults, make sure that it is enabled. From Setup,<br />
click Security Controls > Sharing Settings, and click the Enable External Sharing Model button.<br />
When you first enable external organization-wide defaults, the default internal access and default<br />
external access are set to the original default access level. For example, if your organization-wide<br />
default for contacts is Private, the default internal access and default external access will be Private<br />
as well.<br />
To set the external organization-wide default for an object:<br />
1. From Setup, click Security Controls > Sharing Settings<br />
2. Click Edit in the Organization-Wide Defaults area.<br />
3. For each object, select the default access you want to use.<br />
You can assign the following access levels.<br />
EDITIONS<br />
Available in:<br />
• Professional<br />
• Enterprise<br />
• Performance<br />
• Unlimited<br />
• Developer<br />
USER PERMISSIONS<br />
To set default sharing<br />
access:<br />
• “Manage Sharing”<br />
Access Level<br />
Controlled by Parent<br />
Description<br />
Users can perform actions (such as view, edit, delete) on a record on<br />
the detail side of a master-detail relationship if they can perform the<br />
same action on all associated master records.<br />
Note: For contacts, Controlled by Parent must be<br />
set for both the default internal and external access.<br />
Private<br />
Public Read Only<br />
Public Read/Write<br />
Only users who are granted access by ownership, permissions, role<br />
hierarchy, manual sharing, or sharing rules can access the records.<br />
All users can view all records for the object.<br />
All users can view and edit all records for the object.<br />
4. Click Save.<br />
Note: The default external access level must be more restrictive or equal to the default internal access level. For example, you<br />
can have a custom object with default external access set to Private and default internal access set to Public Read Only.<br />
48