How do I reduce the number of people with View All Data permission? - Story From: Recent Ideas

I had this question come up today:

"We have over one hundred people in our org with View All Data. This is too many and represents a potential security risk. How can I reduce the number of people with this permission in order to reduce the risk that people can view more than they should be able to?"

Before you can reduce the list of users who have View All Data, you may need to determine if any of those users have this permission for one of the following ten reasons listed below. If they don't need to accomplish one of these tasks, it's a good idea to change their profile over to something that doesn't have View All Data.

  1. You need Read on all objects (Sharing is ignored in this case) – this is the primary use case for granting View All Data and what View All Records was meant to solve for by ignoring sharing on an object basis rather than across all objects.
  2. You need to set the Running User of a dashboard to someone other than yourself (requires Manage Dashboards permission as well)
  3. Anyone with Modify All Data, Author Apex, Download AppExchange Packages or Create AppExchange Packages will also get View All Data (it's required).
  4. The "big deal alert" user on opportunities needs to have view all data
  5. You need to view private attachments, notes, and Googledocs from other users will be displayed in the related list and in the API
  6. You need to view private events and tasks owned by other people are available in the calendar and API.
  7. You need API Access to Forecasting
  8. You need to do an API Upsert on a non unique fields
  9. You need to use the System (Apex) system log (in the header)
  10. You need to view private chatter groups

Let us know what you think!

CRM Software Free Trial – Your CRM online guide to Web-based Contact Management Software Free Internet Trials and the latest news, article, reviews & comparisons.



CRM Software Free Trial – Your CRM online guide to Web-based Contact Management Software Free Internet Trials and the latest news, article, reviews & comparisons.

Post Footer automatically generated by Add Post Footer Plugin for wordpress.

“We here at the “Web-Based Contact Management Software News, Reviews” are posting for your consumption the latest blog posts from the major Web-Based CRM Software vendors around the world who are focused on the development of products that enhance your CRM experience.” enjoy :)

——————————

Post Name:
How do I reduce the number of people with View All Data permission? – Story From: Recent Ideas
* If Needed – To Read the Full Story: (post’s here may be limited by vendor’s RSS feed) – Highlight above post’s blue title, right click and search with google.

Listed Related posts:

  1. What can Modify All Data really do? - Story From: Recent Ideas I had this question come up last Friday: "What can Modify All Data really do?" We all know this permission to mean, "system administrator".  But we rarely look at the detail of what makes up the...
  2. What can Manage Users permission do? - Story From: Recent Ideas I had a question come up yesterday regarding what the Manage Users permission on a profile actually enables a user to do.  It turns out that it allows a user to do a lot of things...
  3. How to fine tune Knowledge article auto-suggestion on case creation - Story From: Recent Ideas With Summer’10 release, Knowledge gains the ability to auto-suggest relevant articles upon case creation. Just like when searching Knowledge from a case details, the search uses only the case subject and this search can be fine...
  4. Distributed Administration using Sandbox and Change Sets - Story From: Recent Ideas One of the primary use cases I hear with distributed administration is the ability to delegate customization access to some setup (metadata) components.  This often includes components like objects, fields, record types, page layouts, workflow...
  5. Prevent Cherry-Picking On Cases And Leads With The Get Next Button - Story From: Recent Ideas Service Cloud customers sometimes tell me that they have a problem with their agents cherry-picking cases and leads.  They use assignment rules to assign the objects to queues, but once they're in queues, the agents look...
  6. AppExchange App of the Week: iHance Chatter Graphs - Story From: Recent Ideas Alright, I'll admit it, I've got Chatter on the brain these days.   There are so many cool new apps on the ChatterExchange though, I just can't help myself.    This week's app of the week is called...
  7. AppExchange App(s) of the Week: CVM Solutions - Story From: Recent Ideas Patience is not my strong suit so I’ve been chomping at the bit to feature this week’s app(s) of the week.  CVM provides supplier management solutions for a who’s who of Fortune 1000 companies and has...
  8. AppExchange App of the Week: BMC ServiceDesk on Force.com This week’s App of the Week comes from BMC Software, a recognized leader in Business Service Management.  Now their industry leading service desk offering is available as a SaaS application allowing you to leverage enterprise-class IT...
  9. AppExchange App of the Week: Chatter Collaborative Feedback - Story From: Recent Ideas I want to start this week’s post by encouraging everyone to sign up for our Force.com Labs webinar which is taking place this Tuesday at 10:00 PT.    You’ll get a great overview of our Force.com and...
  10. Reduce users with too much administrative rights [Profile Best Practices] - Story From: Popular Ideas Giving out Modify All Data, Customize App, or Manage Users to other users is like giving the ultimate power in the salesforce.com universe.  And with total power comes... a lot of risk. Ultimately, as organizations...