SlideShare a Scribd company logo

Increase Quality with User Access Policies - July 2024

P
Peter Caitens

⭐️ Increase Quality with User Access Policies ⭐️, presented by Peter Caitens and Adam Best of Salesforce. View the slides from this session to hear all about “User Access Policies” and how they can help you onboard users faster with greater quality.

Related slideshows

Mulesoft RPA & The Last Mile Problem (Dreamforce 22 ) | MuleSoft Mysore Meetu...
Mulesoft RPA & The Last Mile Problem (Dreamforce 22 ) | MuleSoft Mysore Meetu...Mulesoft RPA & The Last Mile Problem (Dreamforce 22 ) | MuleSoft Mysore Meetu...
Mulesoft RPA & The Last Mile Problem (Dreamforce 22 ) | MuleSoft Mysore Meetu...
 
Appy Valentine's Day! Spring Release Edition.pdf
Appy Valentine's Day! Spring Release Edition.pdfAppy Valentine's Day! Spring Release Edition.pdf
Appy Valentine's Day! Spring Release Edition.pdf
 
SFWelly user group spring '22 release highlights with Mel Macdonald
SFWelly user group spring '22 release highlights with Mel MacdonaldSFWelly user group spring '22 release highlights with Mel Macdonald
SFWelly user group spring '22 release highlights with Mel Macdonald
 
1 of 17
Download to read offline
Salesforce Developer Group Brisbane, Australia @peter.caitens Group Leader: Peter Caitens
Housekeeping ● Session will be recorded ● Recording will be available on the event page in a couple of days ● Ask your questions in chat ● Time for questions at the end
Agenda 1. Welcome, Groups News 2. Personas and User Access Policies 3. Demo 4. Q&A & Wrap up
Group News Upcoming Events 1. August 7 @ 4:30pm - In Person @ PWC Salesforce Admin User Group Service Cloud Voice - Natterbox Demystifying Data Cloud - Bec Aichholzer 2. July 30 @ 5.00 - 6.00pm - Virtual Trailhead Tuesday Formulas 3. September 17-19 - San Francisco Dreamforce
Personas & User Access Policies Program Architect Director Adam Best
Forward Looking Statements This presentation contains forward-looking statements about, among other things, trend analyses and future events, future financial performance, anticipated growth, industry prospects, environmental, social and governance goals, and the anticipated benefits of acquired companies. The achievement or success of the matters covered by such forward-looking statements involves risks, uncertainties and assumptions. If any such risks or uncertainties materialize or if any of the assumptions prove incorrect, Salesforce’s results could differ materially from the results expressed or implied by these forward-looking statements. The risks and uncertainties referred to above include those factors discussed in Salesforce’s reports filed from time to time with the Securities and Exchange Commission, including, but not limited to: impact of, and actions we may take in response to, the COVID-19 pandemic, related public health measures and resulting economic downturn and market volatility; our ability to maintain security levels and service performance meeting the expectations of our customers, and the resources and costs required to avoid unanticipated downtime and prevent, detect and remediate performance degradation and security breaches; the expenses associated with our data centers and third-party infrastructure providers; our ability to secure additional data center capacity; our reliance on third-party hardware, software and platform providers; the effect of evolving domestic and foreign government regulations, including those related to the provision of services on the Internet, those related to accessing the Internet, and those addressing data privacy, cross-border data transfers and import and export controls; current and potential litigation involving us or our industry, including litigation involving acquired entities such as Tableau Software, Inc. and Slack Technologies, Inc., and the resolution or settlement thereof; regulatory developments and regulatory investigations involving us or affecting our industry; our ability to successfully introduce new services and product features, including any efforts to expand our services; the success of our strategy of acquiring or making investments in complementary businesses, joint ventures, services, technologies and intellectual property rights; our ability to complete, on a timely basis or at all, announced transactions; our ability to realize the benefits from acquisitions, strategic partnerships, joint ventures and investments, including our July 2021 acquisition of Slack Technologies, Inc., and successfully integrate acquired businesses and technologies; our ability to compete in the markets in which we participate; the success of our business strategy and our plan to build our business, including our strategy to be a leading provider of enterprise cloud computing applications and platforms; our ability to execute our business plans; our ability to continue to grow unearned revenue and remaining performance obligation; the pace of change and innovation in enterprise cloud computing services; the seasonal nature of our sales cycles; our ability to limit customer attrition and costs related to those efforts; the success of our international expansion strategy; the demands on our personnel and infrastructure resulting from significant growth in our customer base and operations, including as a result of acquisitions; our ability to preserve our workplace culture, including as a result of our decisions regarding our current and future office environments or work-from-home policies; our dependency on the development and maintenance of the infrastructure of the Internet; our real estate and office facilities strategy and related costs and uncertainties; fluctuations in, and our ability to predict, our operating results and cash flows; the variability in our results arising from the accounting for term license revenue products; the performance and fair value of our investments in complementary businesses through our strategic investment portfolio; the impact of future gains or losses from our strategic investment portfolio, including gains or losses from overall market conditions that may affect the publicly traded companies within our strategic investment portfolio; our ability to protect our intellectual property rights; our ability to develop our brands; the impact of foreign currency exchange rate and interest rate fluctuations on our results; the valuation of our deferred tax assets and the release of related valuation allowances; the potential availability of additional tax assets in the future; the impact of new accounting pronouncements and tax laws; uncertainties affecting our ability to estimate our tax rate; uncertainties regarding our tax obligations in connection with potential jurisdictional transfers of intellectual property, including the tax rate, the timing of the transfer and the value of such transferred intellectual property; uncertainties regarding the effect of general economic and market conditions; the impact of geopolitical events; uncertainties regarding the impact of expensing stock options and other equity awards; the sufficiency of our capital resources; the ability to execute our Share Repurchase Program; our ability to comply with our debt covenants and lease obligations; the impact of climate change, natural disasters and actual or threatened public health emergencies; and our ability to achieve our aspirations, goals and projections related to our environmental, social and governance initiatives. Updated: September 28, 2022
User Access Policies When: GA in Summer’24 (June 2024) Enable: Goto Setup > User Management Settings > User Access Policies More Info + Video: http://sfdc.co/UAPsHelpPage What does they do: When creating a User, User Access Policies auto assign the following components ○ Permission Sets ○ Permission Set Groups ○ Permission Set License Assignments ○ Public Groups ○ Queues based on selected criteria ○ Role ○ Profile ○ Custom Field
What is a Persona? Persona (User) Service Agent User: Set on User On the user, there are various licencing options which might need to be assigned for this persona to work as designed. Example: ● Marketing User ● Knowledge User ● Flow User ● Service Cloud User Profile: Service Profiles define how users access Salesforce and view the applications ● Default App ● Default Record Type ● Page Layouts ● IP Restrictions **Even though profiles have Object/Field access, these should be exclusively granted with permission sets Role: Service Agent A role is a record-level access in Salesforce that defines the visibility access of a user. Roles can be used to specify levels of access a user can have to data records in your Salesforce Org. In simple words, it defines what records a user can see. Roles are also useful for custom sharing rules Permission Set Group: Persona Service Agent Permission Sets are assigned to a Permission Set Group. This will combine the access to a number of features which will need to be accessed by the Persona Permission Set: Contact Center Console ● App: Contact Center Console ● Object: Contacts, Accounts (view/update) ● System Perm: LEX Experience A Permission Set contains the required Object, Field and other perms required for this feature to work as designed. Permission Set: Case Management ● Object: Case (create/view /update) ● Fields: Status (view/updat e) Permission Set: List Emails System Perm: Allow sending of List Emails Public Group: Service Agent A public group with the same persona name is used to assign: ● custom sharing rules ● list views ● queues ● dashboard folders ● report folders ● email template folders Permission Set License: Sales Cloud Unlimited Einstein Agent Einstein GPT Copilot A “Persona” is the configuration makeup of a user
User Access Policies can auto assign components to a user Persona (User) Service Agent User: Set on User On the user, there are various licencing options which might need to be assigned for this persona to work as designed. Example: ● Marketing User ● Knowledge User ● Flow User ● Service Cloud User Profile: Service Profiles define how users access Salesforce and view the applications ● Default App ● Default Record Type ● Page Layouts ● IP Restrictions **Even though profiles have Object/Field access, these should be exclusively granted with permission sets Role: Service Agent A role is a record-level access in Salesforce that defines the visibility access of a user. Roles can be used to specify levels of access a user can have to data records in your Salesforce Org. In simple words, it defines what records a user can see. Roles are also useful for custom sharing rules Permission Set Group: Persona Service Agent Permission Sets are assigned to a Permission Set Group. This will combine the access to a number of features which will need to be accessed by the Persona Permission Set: Contact Center Console ● App: Contact Center Console ● Object: Contacts, Accounts (view/update) ● System Perm: LEX Experience A Permission Set contains the required Object, Field and other perms required for this feature to work as designed. Permission Set: Case Management ● Object: Case (create/view /update) ● Fields: Status (view/updat e) Permission Set: List Emails System Perm: Allow sending of List Emails Public Group: Service Agent A public group with the same persona name is used to assign: ● custom sharing rules ● list views ● queues ● dashboard folders ● report folders ● email template folders Permission Set License: Sales Cloud Unlimited Einstein Agent Einstein GPT Copilot
All we need now is criteria for UAP’s to assign Persona (User) Service Agent User: Set on User On the user, there are various licencing options which might need to be assigned for this persona to work as designed. Example: ● Marketing User ● Knowledge User ● Flow User ● Service Cloud User Profile: Service Profiles define how users access Salesforce and view the applications ● Default App ● Default Record Type ● Page Layouts ● IP Restrictions **Even though profiles have Object/Field access, these should be exclusively granted with permission sets Role: Service Agent A role is a record-level access in Salesforce that defines the visibility access of a user. Roles can be used to specify levels of access a user can have to data records in your Salesforce Org. In simple words, it defines what records a user can see. Roles are also useful for custom sharing rules Permission Set Group: Persona Service Agent Permission Sets are assigned to a Permission Set Group. This will combine the access to a number of features which will need to be accessed by the Persona Permission Set: Contact Center Console ● App: Contact Center Console ● Object: Contacts, Accounts (view/update) ● System Perm: LEX Experience A Permission Set contains the required Object, Field and other perms required for this feature to work as designed. Permission Set: Case Management ● Object: Case (create/view /update) ● Fields: Status (view/updat e) Permission Set: List Emails System Perm: Allow sending of List Emails Public Group: Service Agent A public group with the same persona name is used to assign: ● custom sharing rules ● list views ● queues ● dashboard folders ● report folders ● email template folders Permission Set License: Sales Cloud Unlimited Einstein Agent Einstein GPT Copilot Lets create a picklist field on the User object called Persona
#1 - Create a picklist field on User Record Create a Picklist field called “Persona” on user object which contains your Personas
#2 - Configure User Access Policies For each Persona, create a User Access Policy which will automatically assign user components (perm sets, perm set groups, public groups) when you select a Persona for your user
#3 - Create a user Creating a user is really easy now. You’ll complete the following fields, then click save. ● Role ● Profile ● Persona ← New Field
Adam’s POC (Proof of Concept) Observations ● You can have 200 User Access Policies per ORG. ● User Access policies will add permission sets, permission set groups, public groups, queues, permission set licence assignments. ● Creating a single picklist on User works. Eg. You could assign a single persona to configure a user with. Creating a multi picklist to assign multiple personas probably won’t work as only 1 UAP is run at a time (The UAP with the lowest order number). ● Happy path: Create UAPs, Assign to current users, Activate (Insert or update of users).. Works like a treat! ● When configuring the User Access Policy, you see DeveloperName’s of components, not labels. ● If you manually assign components before a User Access Policy was applied to a user, these components will not be removed if the same component are part of that persona and you remove or change the persona on the user. ● Removing a persona or changing a persona on a user today will automatically remove permission sets, but permission set groups and public groups seem to remain on the user. ● User Access Policies do not seem to work in Apex Unit Testing. Today, you’ll need to keep your TestDataFactory.cls up to date with the persona components when creating virtual users for use with your apex unit tests while using runAs ● You cannot modify an active UAP ● Deployments of UAPs… still POCing!
Demo
Questions
Increase Quality with User Access Policies - July 2024

More Related Content

Similar to Increase Quality with User Access Policies - July 2024

Mulesoft RPA & The Last Mile Problem (Dreamforce 22 ) | MuleSoft Mysore Meetu...
Mulesoft RPA & The Last Mile Problem (Dreamforce 22 ) | MuleSoft Mysore Meetu...Mulesoft RPA & The Last Mile Problem (Dreamforce 22 ) | MuleSoft Mysore Meetu...
Mulesoft RPA & The Last Mile Problem (Dreamforce 22 ) | MuleSoft Mysore Meetu...
MysoreMuleSoftMeetup
 
Appy Valentine's Day! Spring Release Edition.pdf
Appy Valentine's Day! Spring Release Edition.pdfAppy Valentine's Day! Spring Release Edition.pdf
Appy Valentine's Day! Spring Release Edition.pdf
kpallack
 
SFWelly user group spring '22 release highlights with Mel Macdonald
SFWelly user group spring '22 release highlights with Mel MacdonaldSFWelly user group spring '22 release highlights with Mel Macdonald
SFWelly user group spring '22 release highlights with Mel Macdonald
Anna Loughnan Colquhoun
 
Wellington Salesforce User Group - Summer 22 Release
Wellington Salesforce User Group - Summer 22 ReleaseWellington Salesforce User Group - Summer 22 Release
Wellington Salesforce User Group - Summer 22 Release
Anna Loughnan Colquhoun
 
DC MuleSoft Meetup: TDX Talk: API Security The 3 Keys To Protect Your Digital...
DC MuleSoft Meetup: TDX Talk: API Security The 3 Keys To Protect Your Digital...DC MuleSoft Meetup: TDX Talk: API Security The 3 Keys To Protect Your Digital...
DC MuleSoft Meetup: TDX Talk: API Security The 3 Keys To Protect Your Digital...
Big Compass
 
Toronto Developer Group - Winter 24' Release Highlights.pptx
Toronto Developer Group - Winter 24' Release Highlights.pptxToronto Developer Group - Winter 24' Release Highlights.pptx
Toronto Developer Group - Winter 24' Release Highlights.pptx
Karanraj Sankaranarayanan
 
Denver MuleSoft Meetup: TDX Talk - Automatically Secure and Manage any API at...
Denver MuleSoft Meetup: TDX Talk - Automatically Secure and Manage any API at...Denver MuleSoft Meetup: TDX Talk - Automatically Secure and Manage any API at...
Denver MuleSoft Meetup: TDX Talk - Automatically Secure and Manage any API at...
Big Compass
 
WT19: Platform Events Are for Admins Too!
WT19: Platform Events Are for Admins Too! WT19: Platform Events Are for Admins Too!
WT19: Platform Events Are for Admins Too!
Salesforce Admins
 
Jax, FL Admin Group Presents: Winter '22 Release Highlights
Jax, FL Admin Group Presents: Winter '22 Release HighlightsJax, FL Admin Group Presents: Winter '22 Release Highlights
Jax, FL Admin Group Presents: Winter '22 Release Highlights
Marc Lester
 
CLE TrailheaDX 2020 Global Gathering
CLE TrailheaDX 2020 Global GatheringCLE TrailheaDX 2020 Global Gathering
CLE TrailheaDX 2020 Global Gathering
Lynda Kane
 
Dreamforce '23 - Master the Art of Becoming a Salesforce Security Ninja
Dreamforce '23 - Master the Art of Becoming a Salesforce Security NinjaDreamforce '23 - Master the Art of Becoming a Salesforce Security Ninja
Dreamforce '23 - Master the Art of Becoming a Salesforce Security Ninja
Alesia Dvorkina
 
Summer '20 preview release overview-deck
Summer '20 preview release overview-deckSummer '20 preview release overview-deck
Summer '20 preview release overview-deck
Alan Thomas Payne
 
Intro to Tableau - SL Dev Group.pdf
Intro to Tableau - SL Dev Group.pdfIntro to Tableau - SL Dev Group.pdf
Intro to Tableau - SL Dev Group.pdf
Salesforce.com Developer Community
 
AI for Every Business: Unlocking Your Product's Universal Potential by VP of ...
AI for Every Business: Unlocking Your Product's Universal Potential by VP of ...AI for Every Business: Unlocking Your Product's Universal Potential by VP of ...
AI for Every Business: Unlocking Your Product's Universal Potential by VP of ...
Product School
 
Architecting Integrations for Observability.pdf
Architecting Integrations for Observability.pdfArchitecting Integrations for Observability.pdf
Architecting Integrations for Observability.pdf
Manik S Magar
 
MuleSoft Composer - OKC Oklahoma City MuleSoft Meetup 11/11/21
MuleSoft Composer - OKC Oklahoma City MuleSoft Meetup 11/11/21MuleSoft Composer - OKC Oklahoma City MuleSoft Meetup 11/11/21
MuleSoft Composer - OKC Oklahoma City MuleSoft Meetup 11/11/21
DianeKesler2
 
Salesforce Winter22 Release Overview
Salesforce Winter22 Release OverviewSalesforce Winter22 Release Overview
Salesforce Winter22 Release Overview
Sara Sali
 
July 2020 Chicago Nonprofit Group - Summer '20 Highlights
July 2020 Chicago Nonprofit Group - Summer '20 HighlightsJuly 2020 Chicago Nonprofit Group - Summer '20 Highlights
July 2020 Chicago Nonprofit Group - Summer '20 Highlights
csupilowski
 
Austin Developers - New Lighting Web Component Features & #TDX22 Updates
Austin Developers - New Lighting Web Component Features & #TDX22 UpdatesAustin Developers - New Lighting Web Component Features & #TDX22 Updates
Austin Developers - New Lighting Web Component Features & #TDX22 Updates
NadinaLisbon1
 
Winter 21 Developer Highlights for Salesforce
Winter 21 Developer Highlights for SalesforceWinter 21 Developer Highlights for Salesforce
Winter 21 Developer Highlights for Salesforce
Peter Chittum
 

Similar to Increase Quality with User Access Policies - July 2024 (20)

Mulesoft RPA & The Last Mile Problem (Dreamforce 22 ) | MuleSoft Mysore Meetu...
Mulesoft RPA & The Last Mile Problem (Dreamforce 22 ) | MuleSoft Mysore Meetu...Mulesoft RPA & The Last Mile Problem (Dreamforce 22 ) | MuleSoft Mysore Meetu...
Mulesoft RPA & The Last Mile Problem (Dreamforce 22 ) | MuleSoft Mysore Meetu...
 
Appy Valentine's Day! Spring Release Edition.pdf
Appy Valentine's Day! Spring Release Edition.pdfAppy Valentine's Day! Spring Release Edition.pdf
Appy Valentine's Day! Spring Release Edition.pdf
 
SFWelly user group spring '22 release highlights with Mel Macdonald
SFWelly user group spring '22 release highlights with Mel MacdonaldSFWelly user group spring '22 release highlights with Mel Macdonald
SFWelly user group spring '22 release highlights with Mel Macdonald
 
Wellington Salesforce User Group - Summer 22 Release
Wellington Salesforce User Group - Summer 22 ReleaseWellington Salesforce User Group - Summer 22 Release
Wellington Salesforce User Group - Summer 22 Release
 
DC MuleSoft Meetup: TDX Talk: API Security The 3 Keys To Protect Your Digital...
DC MuleSoft Meetup: TDX Talk: API Security The 3 Keys To Protect Your Digital...DC MuleSoft Meetup: TDX Talk: API Security The 3 Keys To Protect Your Digital...
DC MuleSoft Meetup: TDX Talk: API Security The 3 Keys To Protect Your Digital...
 
Toronto Developer Group - Winter 24' Release Highlights.pptx
Toronto Developer Group - Winter 24' Release Highlights.pptxToronto Developer Group - Winter 24' Release Highlights.pptx
Toronto Developer Group - Winter 24' Release Highlights.pptx
 
Denver MuleSoft Meetup: TDX Talk - Automatically Secure and Manage any API at...
Denver MuleSoft Meetup: TDX Talk - Automatically Secure and Manage any API at...Denver MuleSoft Meetup: TDX Talk - Automatically Secure and Manage any API at...
Denver MuleSoft Meetup: TDX Talk - Automatically Secure and Manage any API at...
 
WT19: Platform Events Are for Admins Too!
WT19: Platform Events Are for Admins Too! WT19: Platform Events Are for Admins Too!
WT19: Platform Events Are for Admins Too!
 
Jax, FL Admin Group Presents: Winter '22 Release Highlights
Jax, FL Admin Group Presents: Winter '22 Release HighlightsJax, FL Admin Group Presents: Winter '22 Release Highlights
Jax, FL Admin Group Presents: Winter '22 Release Highlights
 
CLE TrailheaDX 2020 Global Gathering
CLE TrailheaDX 2020 Global GatheringCLE TrailheaDX 2020 Global Gathering
CLE TrailheaDX 2020 Global Gathering
 
Dreamforce '23 - Master the Art of Becoming a Salesforce Security Ninja
Dreamforce '23 - Master the Art of Becoming a Salesforce Security NinjaDreamforce '23 - Master the Art of Becoming a Salesforce Security Ninja
Dreamforce '23 - Master the Art of Becoming a Salesforce Security Ninja
 
Summer '20 preview release overview-deck
Summer '20 preview release overview-deckSummer '20 preview release overview-deck
Summer '20 preview release overview-deck
 
Intro to Tableau - SL Dev Group.pdf
Intro to Tableau - SL Dev Group.pdfIntro to Tableau - SL Dev Group.pdf
Intro to Tableau - SL Dev Group.pdf
 
AI for Every Business: Unlocking Your Product's Universal Potential by VP of ...
AI for Every Business: Unlocking Your Product's Universal Potential by VP of ...AI for Every Business: Unlocking Your Product's Universal Potential by VP of ...
AI for Every Business: Unlocking Your Product's Universal Potential by VP of ...
 
Architecting Integrations for Observability.pdf
Architecting Integrations for Observability.pdfArchitecting Integrations for Observability.pdf
Architecting Integrations for Observability.pdf
 
MuleSoft Composer - OKC Oklahoma City MuleSoft Meetup 11/11/21
MuleSoft Composer - OKC Oklahoma City MuleSoft Meetup 11/11/21MuleSoft Composer - OKC Oklahoma City MuleSoft Meetup 11/11/21
MuleSoft Composer - OKC Oklahoma City MuleSoft Meetup 11/11/21
 
Salesforce Winter22 Release Overview
Salesforce Winter22 Release OverviewSalesforce Winter22 Release Overview
Salesforce Winter22 Release Overview
 
July 2020 Chicago Nonprofit Group - Summer '20 Highlights
July 2020 Chicago Nonprofit Group - Summer '20 HighlightsJuly 2020 Chicago Nonprofit Group - Summer '20 Highlights
July 2020 Chicago Nonprofit Group - Summer '20 Highlights
 
Austin Developers - New Lighting Web Component Features & #TDX22 Updates
Austin Developers - New Lighting Web Component Features & #TDX22 UpdatesAustin Developers - New Lighting Web Component Features & #TDX22 Updates
Austin Developers - New Lighting Web Component Features & #TDX22 Updates
 
Winter 21 Developer Highlights for Salesforce
Winter 21 Developer Highlights for SalesforceWinter 21 Developer Highlights for Salesforce
Winter 21 Developer Highlights for Salesforce
 

Recently uploaded

Epicor Kinetic REST API Services Overview.pptx
Epicor Kinetic REST API Services Overview.pptxEpicor Kinetic REST API Services Overview.pptx
Epicor Kinetic REST API Services Overview.pptx
Piyush Khalate
 
TribeQonf2024_Dimpy_ShiftingSecurityLeft
TribeQonf2024_Dimpy_ShiftingSecurityLeftTribeQonf2024_Dimpy_ShiftingSecurityLeft
TribeQonf2024_Dimpy_ShiftingSecurityLeft
Dimpy Adhikary
 
The Challenge of Interpretability in Generative AI Models.pdf
The Challenge of Interpretability in Generative AI Models.pdfThe Challenge of Interpretability in Generative AI Models.pdf
The Challenge of Interpretability in Generative AI Models.pdf
Sara Kroft
 
Getting Ready for Copilot for Microsoft 365 with Governance Features in Share...
Getting Ready for Copilot for Microsoft 365 with Governance Features in Share...Getting Ready for Copilot for Microsoft 365 with Governance Features in Share...
Getting Ready for Copilot for Microsoft 365 with Governance Features in Share...
Juan Carlos Gonzalez
 
CI/CD pipelines for CloudHub 2.0 - Wroclaw MuleSoft Meetup #2
CI/CD pipelines for CloudHub 2.0 - Wroclaw MuleSoft Meetup #2CI/CD pipelines for CloudHub 2.0 - Wroclaw MuleSoft Meetup #2
CI/CD pipelines for CloudHub 2.0 - Wroclaw MuleSoft Meetup #2
wromeetup
 
STKI Israeli IT Market Study v2 August 2024.pdf
STKI Israeli IT Market Study v2 August 2024.pdfSTKI Israeli IT Market Study v2 August 2024.pdf
STKI Israeli IT Market Study v2 August 2024.pdf
Dr. Jimmy Schwarzkopf
 
Project Delivery Methodology on a page with activities, deliverables
Project Delivery Methodology on a page with activities, deliverablesProject Delivery Methodology on a page with activities, deliverables
Project Delivery Methodology on a page with activities, deliverables
CLIVE MINCHIN
 
FIDO Munich Seminar In-Vehicle Payment Trends.pptx
FIDO Munich Seminar In-Vehicle Payment Trends.pptxFIDO Munich Seminar In-Vehicle Payment Trends.pptx
FIDO Munich Seminar In-Vehicle Payment Trends.pptx
FIDO Alliance
 
Project management Course in Australia.pptx
Project management Course in Australia.pptxProject management Course in Australia.pptx
Project management Course in Australia.pptx
deathreaper9
 
FIDO Munich Seminar: Securing Smart Car.pptx
FIDO Munich Seminar: Securing Smart Car.pptxFIDO Munich Seminar: Securing Smart Car.pptx
FIDO Munich Seminar: Securing Smart Car.pptx
FIDO Alliance
 
Flame Atomic Emission Spectroscopy.-pptx
Flame Atomic Emission Spectroscopy.-pptxFlame Atomic Emission Spectroscopy.-pptx
Flame Atomic Emission Spectroscopy.-pptx
VaishnaviChavan206944
 
Securiport Gambia - Intelligent Threat Analysis
Securiport Gambia - Intelligent Threat AnalysisSecuriport Gambia - Intelligent Threat Analysis
Securiport Gambia - Intelligent Threat Analysis
Securiport Gambia
 
IVE 2024 Short Course - Lecture 8 - Electroencephalography (EEG) Basics
IVE 2024 Short Course - Lecture 8 - Electroencephalography (EEG) BasicsIVE 2024 Short Course - Lecture 8 - Electroencephalography (EEG) Basics
IVE 2024 Short Course - Lecture 8 - Electroencephalography (EEG) Basics
Mark Billinghurst
 
Informatika smk kelas 10 kurikulum merdeka.pptx
Informatika smk kelas 10 kurikulum merdeka.pptxInformatika smk kelas 10 kurikulum merdeka.pptx
Informatika smk kelas 10 kurikulum merdeka.pptx
OkyPrayudi
 
BCC -401-aktu-Cyber-Security Unit-1.docx
BCC -401-aktu-Cyber-Security Unit-1.docxBCC -401-aktu-Cyber-Security Unit-1.docx
BCC -401-aktu-Cyber-Security Unit-1.docx
pubgnewstate1620
 
Leading Bigcommerce Development Services for Online Retailers
Leading Bigcommerce Development Services for Online RetailersLeading Bigcommerce Development Services for Online Retailers
Leading Bigcommerce Development Services for Online Retailers
SynapseIndia
 
Easy Compliance is Continuous Compliance
Easy Compliance is Continuous ComplianceEasy Compliance is Continuous Compliance
Easy Compliance is Continuous Compliance
Anchore
 
DefCamp_2016_Chemerkin_Yury_--_publish.pdf
DefCamp_2016_Chemerkin_Yury_--_publish.pdfDefCamp_2016_Chemerkin_Yury_--_publish.pdf
DefCamp_2016_Chemerkin_Yury_--_publish.pdf
Yury Chemerkin
 
Generative AI technology is a fascinating field that focuses on creating comp...
Generative AI technology is a fascinating field that focuses on creating comp...Generative AI technology is a fascinating field that focuses on creating comp...
Generative AI technology is a fascinating field that focuses on creating comp...
Nohoax Kanont
 
Getting Started with Azure AI Studio.pptx
Getting Started with Azure AI Studio.pptxGetting Started with Azure AI Studio.pptx
Getting Started with Azure AI Studio.pptx
Swaminathan Vetri
 

Recently uploaded (20)

Epicor Kinetic REST API Services Overview.pptx
Epicor Kinetic REST API Services Overview.pptxEpicor Kinetic REST API Services Overview.pptx
Epicor Kinetic REST API Services Overview.pptx
 
TribeQonf2024_Dimpy_ShiftingSecurityLeft
TribeQonf2024_Dimpy_ShiftingSecurityLeftTribeQonf2024_Dimpy_ShiftingSecurityLeft
TribeQonf2024_Dimpy_ShiftingSecurityLeft
 
The Challenge of Interpretability in Generative AI Models.pdf
The Challenge of Interpretability in Generative AI Models.pdfThe Challenge of Interpretability in Generative AI Models.pdf
The Challenge of Interpretability in Generative AI Models.pdf
 
Getting Ready for Copilot for Microsoft 365 with Governance Features in Share...
Getting Ready for Copilot for Microsoft 365 with Governance Features in Share...Getting Ready for Copilot for Microsoft 365 with Governance Features in Share...
Getting Ready for Copilot for Microsoft 365 with Governance Features in Share...
 
CI/CD pipelines for CloudHub 2.0 - Wroclaw MuleSoft Meetup #2
CI/CD pipelines for CloudHub 2.0 - Wroclaw MuleSoft Meetup #2CI/CD pipelines for CloudHub 2.0 - Wroclaw MuleSoft Meetup #2
CI/CD pipelines for CloudHub 2.0 - Wroclaw MuleSoft Meetup #2
 
STKI Israeli IT Market Study v2 August 2024.pdf
STKI Israeli IT Market Study v2 August 2024.pdfSTKI Israeli IT Market Study v2 August 2024.pdf
STKI Israeli IT Market Study v2 August 2024.pdf
 
Project Delivery Methodology on a page with activities, deliverables
Project Delivery Methodology on a page with activities, deliverablesProject Delivery Methodology on a page with activities, deliverables
Project Delivery Methodology on a page with activities, deliverables
 
FIDO Munich Seminar In-Vehicle Payment Trends.pptx
FIDO Munich Seminar In-Vehicle Payment Trends.pptxFIDO Munich Seminar In-Vehicle Payment Trends.pptx
FIDO Munich Seminar In-Vehicle Payment Trends.pptx
 
Project management Course in Australia.pptx
Project management Course in Australia.pptxProject management Course in Australia.pptx
Project management Course in Australia.pptx
 
FIDO Munich Seminar: Securing Smart Car.pptx
FIDO Munich Seminar: Securing Smart Car.pptxFIDO Munich Seminar: Securing Smart Car.pptx
FIDO Munich Seminar: Securing Smart Car.pptx
 
Flame Atomic Emission Spectroscopy.-pptx
Flame Atomic Emission Spectroscopy.-pptxFlame Atomic Emission Spectroscopy.-pptx
Flame Atomic Emission Spectroscopy.-pptx
 
Securiport Gambia - Intelligent Threat Analysis
Securiport Gambia - Intelligent Threat AnalysisSecuriport Gambia - Intelligent Threat Analysis
Securiport Gambia - Intelligent Threat Analysis
 
IVE 2024 Short Course - Lecture 8 - Electroencephalography (EEG) Basics
IVE 2024 Short Course - Lecture 8 - Electroencephalography (EEG) BasicsIVE 2024 Short Course - Lecture 8 - Electroencephalography (EEG) Basics
IVE 2024 Short Course - Lecture 8 - Electroencephalography (EEG) Basics
 
Informatika smk kelas 10 kurikulum merdeka.pptx
Informatika smk kelas 10 kurikulum merdeka.pptxInformatika smk kelas 10 kurikulum merdeka.pptx
Informatika smk kelas 10 kurikulum merdeka.pptx
 
BCC -401-aktu-Cyber-Security Unit-1.docx
BCC -401-aktu-Cyber-Security Unit-1.docxBCC -401-aktu-Cyber-Security Unit-1.docx
BCC -401-aktu-Cyber-Security Unit-1.docx
 
Leading Bigcommerce Development Services for Online Retailers
Leading Bigcommerce Development Services for Online RetailersLeading Bigcommerce Development Services for Online Retailers
Leading Bigcommerce Development Services for Online Retailers
 
Easy Compliance is Continuous Compliance
Easy Compliance is Continuous ComplianceEasy Compliance is Continuous Compliance
Easy Compliance is Continuous Compliance
 
DefCamp_2016_Chemerkin_Yury_--_publish.pdf
DefCamp_2016_Chemerkin_Yury_--_publish.pdfDefCamp_2016_Chemerkin_Yury_--_publish.pdf
DefCamp_2016_Chemerkin_Yury_--_publish.pdf
 
Generative AI technology is a fascinating field that focuses on creating comp...
Generative AI technology is a fascinating field that focuses on creating comp...Generative AI technology is a fascinating field that focuses on creating comp...
Generative AI technology is a fascinating field that focuses on creating comp...
 
Getting Started with Azure AI Studio.pptx
Getting Started with Azure AI Studio.pptxGetting Started with Azure AI Studio.pptx
Getting Started with Azure AI Studio.pptx
 

Increase Quality with User Access Policies - July 2024

  • 1. Salesforce Developer Group Brisbane, Australia @peter.caitens Group Leader: Peter Caitens
  • 2. Housekeeping ● Session will be recorded ● Recording will be available on the event page in a couple of days ● Ask your questions in chat ● Time for questions at the end
  • 3. Agenda 1. Welcome, Groups News 2. Personas and User Access Policies 3. Demo 4. Q&A & Wrap up
  • 4. Group News Upcoming Events 1. August 7 @ 4:30pm - In Person @ PWC Salesforce Admin User Group Service Cloud Voice - Natterbox Demystifying Data Cloud - Bec Aichholzer 2. July 30 @ 5.00 - 6.00pm - Virtual Trailhead Tuesday Formulas 3. September 17-19 - San Francisco Dreamforce
  • 5. Personas & User Access Policies Program Architect Director Adam Best
  • 6. Forward Looking Statements This presentation contains forward-looking statements about, among other things, trend analyses and future events, future financial performance, anticipated growth, industry prospects, environmental, social and governance goals, and the anticipated benefits of acquired companies. The achievement or success of the matters covered by such forward-looking statements involves risks, uncertainties and assumptions. If any such risks or uncertainties materialize or if any of the assumptions prove incorrect, Salesforce’s results could differ materially from the results expressed or implied by these forward-looking statements. The risks and uncertainties referred to above include those factors discussed in Salesforce’s reports filed from time to time with the Securities and Exchange Commission, including, but not limited to: impact of, and actions we may take in response to, the COVID-19 pandemic, related public health measures and resulting economic downturn and market volatility; our ability to maintain security levels and service performance meeting the expectations of our customers, and the resources and costs required to avoid unanticipated downtime and prevent, detect and remediate performance degradation and security breaches; the expenses associated with our data centers and third-party infrastructure providers; our ability to secure additional data center capacity; our reliance on third-party hardware, software and platform providers; the effect of evolving domestic and foreign government regulations, including those related to the provision of services on the Internet, those related to accessing the Internet, and those addressing data privacy, cross-border data transfers and import and export controls; current and potential litigation involving us or our industry, including litigation involving acquired entities such as Tableau Software, Inc. and Slack Technologies, Inc., and the resolution or settlement thereof; regulatory developments and regulatory investigations involving us or affecting our industry; our ability to successfully introduce new services and product features, including any efforts to expand our services; the success of our strategy of acquiring or making investments in complementary businesses, joint ventures, services, technologies and intellectual property rights; our ability to complete, on a timely basis or at all, announced transactions; our ability to realize the benefits from acquisitions, strategic partnerships, joint ventures and investments, including our July 2021 acquisition of Slack Technologies, Inc., and successfully integrate acquired businesses and technologies; our ability to compete in the markets in which we participate; the success of our business strategy and our plan to build our business, including our strategy to be a leading provider of enterprise cloud computing applications and platforms; our ability to execute our business plans; our ability to continue to grow unearned revenue and remaining performance obligation; the pace of change and innovation in enterprise cloud computing services; the seasonal nature of our sales cycles; our ability to limit customer attrition and costs related to those efforts; the success of our international expansion strategy; the demands on our personnel and infrastructure resulting from significant growth in our customer base and operations, including as a result of acquisitions; our ability to preserve our workplace culture, including as a result of our decisions regarding our current and future office environments or work-from-home policies; our dependency on the development and maintenance of the infrastructure of the Internet; our real estate and office facilities strategy and related costs and uncertainties; fluctuations in, and our ability to predict, our operating results and cash flows; the variability in our results arising from the accounting for term license revenue products; the performance and fair value of our investments in complementary businesses through our strategic investment portfolio; the impact of future gains or losses from our strategic investment portfolio, including gains or losses from overall market conditions that may affect the publicly traded companies within our strategic investment portfolio; our ability to protect our intellectual property rights; our ability to develop our brands; the impact of foreign currency exchange rate and interest rate fluctuations on our results; the valuation of our deferred tax assets and the release of related valuation allowances; the potential availability of additional tax assets in the future; the impact of new accounting pronouncements and tax laws; uncertainties affecting our ability to estimate our tax rate; uncertainties regarding our tax obligations in connection with potential jurisdictional transfers of intellectual property, including the tax rate, the timing of the transfer and the value of such transferred intellectual property; uncertainties regarding the effect of general economic and market conditions; the impact of geopolitical events; uncertainties regarding the impact of expensing stock options and other equity awards; the sufficiency of our capital resources; the ability to execute our Share Repurchase Program; our ability to comply with our debt covenants and lease obligations; the impact of climate change, natural disasters and actual or threatened public health emergencies; and our ability to achieve our aspirations, goals and projections related to our environmental, social and governance initiatives. Updated: September 28, 2022
  • 7. User Access Policies When: GA in Summer’24 (June 2024) Enable: Goto Setup > User Management Settings > User Access Policies More Info + Video: http://sfdc.co/UAPsHelpPage What does they do: When creating a User, User Access Policies auto assign the following components ○ Permission Sets ○ Permission Set Groups ○ Permission Set License Assignments ○ Public Groups ○ Queues based on selected criteria ○ Role ○ Profile ○ Custom Field
  • 8. What is a Persona? Persona (User) Service Agent User: Set on User On the user, there are various licencing options which might need to be assigned for this persona to work as designed. Example: ● Marketing User ● Knowledge User ● Flow User ● Service Cloud User Profile: Service Profiles define how users access Salesforce and view the applications ● Default App ● Default Record Type ● Page Layouts ● IP Restrictions **Even though profiles have Object/Field access, these should be exclusively granted with permission sets Role: Service Agent A role is a record-level access in Salesforce that defines the visibility access of a user. Roles can be used to specify levels of access a user can have to data records in your Salesforce Org. In simple words, it defines what records a user can see. Roles are also useful for custom sharing rules Permission Set Group: Persona Service Agent Permission Sets are assigned to a Permission Set Group. This will combine the access to a number of features which will need to be accessed by the Persona Permission Set: Contact Center Console ● App: Contact Center Console ● Object: Contacts, Accounts (view/update) ● System Perm: LEX Experience A Permission Set contains the required Object, Field and other perms required for this feature to work as designed. Permission Set: Case Management ● Object: Case (create/view /update) ● Fields: Status (view/updat e) Permission Set: List Emails System Perm: Allow sending of List Emails Public Group: Service Agent A public group with the same persona name is used to assign: ● custom sharing rules ● list views ● queues ● dashboard folders ● report folders ● email template folders Permission Set License: Sales Cloud Unlimited Einstein Agent Einstein GPT Copilot A “Persona” is the configuration makeup of a user
  • 9. User Access Policies can auto assign components to a user Persona (User) Service Agent User: Set on User On the user, there are various licencing options which might need to be assigned for this persona to work as designed. Example: ● Marketing User ● Knowledge User ● Flow User ● Service Cloud User Profile: Service Profiles define how users access Salesforce and view the applications ● Default App ● Default Record Type ● Page Layouts ● IP Restrictions **Even though profiles have Object/Field access, these should be exclusively granted with permission sets Role: Service Agent A role is a record-level access in Salesforce that defines the visibility access of a user. Roles can be used to specify levels of access a user can have to data records in your Salesforce Org. In simple words, it defines what records a user can see. Roles are also useful for custom sharing rules Permission Set Group: Persona Service Agent Permission Sets are assigned to a Permission Set Group. This will combine the access to a number of features which will need to be accessed by the Persona Permission Set: Contact Center Console ● App: Contact Center Console ● Object: Contacts, Accounts (view/update) ● System Perm: LEX Experience A Permission Set contains the required Object, Field and other perms required for this feature to work as designed. Permission Set: Case Management ● Object: Case (create/view /update) ● Fields: Status (view/updat e) Permission Set: List Emails System Perm: Allow sending of List Emails Public Group: Service Agent A public group with the same persona name is used to assign: ● custom sharing rules ● list views ● queues ● dashboard folders ● report folders ● email template folders Permission Set License: Sales Cloud Unlimited Einstein Agent Einstein GPT Copilot
  • 10. All we need now is criteria for UAP’s to assign Persona (User) Service Agent User: Set on User On the user, there are various licencing options which might need to be assigned for this persona to work as designed. Example: ● Marketing User ● Knowledge User ● Flow User ● Service Cloud User Profile: Service Profiles define how users access Salesforce and view the applications ● Default App ● Default Record Type ● Page Layouts ● IP Restrictions **Even though profiles have Object/Field access, these should be exclusively granted with permission sets Role: Service Agent A role is a record-level access in Salesforce that defines the visibility access of a user. Roles can be used to specify levels of access a user can have to data records in your Salesforce Org. In simple words, it defines what records a user can see. Roles are also useful for custom sharing rules Permission Set Group: Persona Service Agent Permission Sets are assigned to a Permission Set Group. This will combine the access to a number of features which will need to be accessed by the Persona Permission Set: Contact Center Console ● App: Contact Center Console ● Object: Contacts, Accounts (view/update) ● System Perm: LEX Experience A Permission Set contains the required Object, Field and other perms required for this feature to work as designed. Permission Set: Case Management ● Object: Case (create/view /update) ● Fields: Status (view/updat e) Permission Set: List Emails System Perm: Allow sending of List Emails Public Group: Service Agent A public group with the same persona name is used to assign: ● custom sharing rules ● list views ● queues ● dashboard folders ● report folders ● email template folders Permission Set License: Sales Cloud Unlimited Einstein Agent Einstein GPT Copilot Lets create a picklist field on the User object called Persona
  • 11. #1 - Create a picklist field on User Record Create a Picklist field called “Persona” on user object which contains your Personas
  • 12. #2 - Configure User Access Policies For each Persona, create a User Access Policy which will automatically assign user components (perm sets, perm set groups, public groups) when you select a Persona for your user
  • 13. #3 - Create a user Creating a user is really easy now. You’ll complete the following fields, then click save. ● Role ● Profile ● Persona ← New Field
  • 14. Adam’s POC (Proof of Concept) Observations ● You can have 200 User Access Policies per ORG. ● User Access policies will add permission sets, permission set groups, public groups, queues, permission set licence assignments. ● Creating a single picklist on User works. Eg. You could assign a single persona to configure a user with. Creating a multi picklist to assign multiple personas probably won’t work as only 1 UAP is run at a time (The UAP with the lowest order number). ● Happy path: Create UAPs, Assign to current users, Activate (Insert or update of users).. Works like a treat! ● When configuring the User Access Policy, you see DeveloperName’s of components, not labels. ● If you manually assign components before a User Access Policy was applied to a user, these components will not be removed if the same component are part of that persona and you remove or change the persona on the user. ● Removing a persona or changing a persona on a user today will automatically remove permission sets, but permission set groups and public groups seem to remain on the user. ● User Access Policies do not seem to work in Apex Unit Testing. Today, you’ll need to keep your TestDataFactory.cls up to date with the persona components when creating virtual users for use with your apex unit tests while using runAs ● You cannot modify an active UAP ● Deployments of UAPs… still POCing!
  • 15. Demo