Create a governance policy for creating profiles [Profile Best Practices] - Story From: Recent Ideas

I spoke with an administrator last week who is responsible for enforcing her governance policy.  When anyone asks her to create a one-off profile, her standard response is that unless it falls into their existing segmentation (by region and then by business unit), she requires an SVP approval to create it. In other words, unless the request falls into her established governance policy that all parties in IT and the business have agreed to, the one-off profile has won't be created.

This kind of response is not surprising considering how easy it is for profiles to proliferate based on these type of ad-hoc requests.  And once a profile is created and assigned to an active user, subsequent updates require the admin to continue to maintain these one-off profiles.

As a result, many admins I've spoken with have created a governance policy to control the number of profiles they need to maintain.  It should be a policy that all stakeholders including the business agrees to since it's possible that multiple administrators in different segments of the business will need to create one off profiles.  As a result, it takes guidelines, discipline, and auditability, to ensure that the policy isn't violated.

For example, you may have many any number of page layouts for an object.  Your governance rule specifies that profiles will only be created for region.  As a result, you have your own Account page layouts for European and North American sales reps but not for English and French sales reps which would be a more granular distinction than what the policy allows for.

Advantages to a governance policy for creating profiles

  • Maintenance is manageable for a large implementation
  • Provides an advanced level of flexibility while maintaining a level of simplicity
  • Provides the ability to increase flexibility at a later date
  • Scalable for future phases 

Ways to create this granularity may include by:

  1. Business Unit
  2. Department
  3. Region
  4. Country
  5. Industry
  6. Line of Business
  7. Product Line
  8. Product Portfolio
  9. Cost Center

It's good to limit the number of levels of granularity.  For instance, first by business unit and then by region. You may have a profile called Corporate Sales – Europe and another called Field Sales – Europe but it may not be beneficial to not create a third level such as Corporate Sales – Europe – Financial Services unless absolutely necessary.

By setting the configuration granularity, there may still be exceptions.  And in the case of exceptions, it helps having an agreed to approval process (which may even be automated using custom objects and workflow approvals in the app). Having an established governance policy merely provides guidance to the analysts and architects in their planning and when additional approvals, such as in the case of exceptions, are necessary there is an established process to obtain that approval.

To learn more best practices with profiles, check out the Top 10 Profile Best Practices blog.

What other practices have you found helpful managing your profiles? Feel free to share them in the comments of this blog!

** Special thanks to Robert Kraynak, Salesforce.com Delivery Engagement Mgr for help with this blog posting

CRM Software Free Trial – Your CRM online guide to Web-based Contact Management Software Free Internet Trials and the latest news, article, reviews & comparisons.



CRM Software Free Trial – Your CRM online guide to Web-based Contact Management Software Free Internet Trials and the latest news, article, reviews & comparisons.

Post Footer automatically generated by Add Post Footer Plugin for wordpress.

“We here at the “Web-Based Contact Management Software News, Reviews” are posting for your consumption the latest blog posts from the major Web-Based CRM Software vendors around the world who are focused on the development of products that enhance your CRM experience.” enjoy :)

——————————

Post Name:
Create a governance policy for creating profiles [Profile Best Practices] – Story From: Recent Ideas
* If Needed – To Read the Full Story: (post’s here may be limited by vendor’s RSS feed) – Highlight above post’s blue title, right click and search with google.

Listed Related posts:

  1. Use custom profiles where possible [Profile Best Practices] - Story From: Recent Ideas You may have already read my blog posting on creating custom objects more securely. Because standard profiles are unchangable and we now default custom object permissions 'off' on net new custom objects after the Spring...
  2. Manage profiles & audit user permissions using the API [Profile Best Practices] - Story From: Popular Ideas Often, when I discuss using the web services API with an admin, I get a response that the API is for programmers and something they want to avoid.  I can't really blame them for this...
  3. Remove unused profiles by running user reports - Story From: Recent Ideas Few people I've spoken with realize that they are continuing to maintain profiles that aren't assigned to any users. As a result, everytime they create a field, record type, tab, app, page layout they are...
  4. Top 10 Profile Best Practices [Profile Best Practices] - Story From: Popular Ideas It starts simply and innocuously: one admin with one profile. As your implementation grows to greater than 1: > 1 app, >1 region, >1 lines of busines, > industry, >1 sets of functionality like portals, your...
  5. Automate profile management using the Force.com IDE [Profile Best Practices] - Story From: Recent Ideas While user permissions are supported in the Web Services API, almost the rest of the profile's controls are supported in the metadata API (see API definition) and can be controlled using the Force.com IDE.  This...
  6. Troubleshoot profile changes with the Setup Audit Trail [Profile Best Practices] - Story From: Recent Ideas I find that for many organizations, auditability is treated in a similar way to keeping tax records around for the past ten years;  you know that you need it, but you're not sure you'll ever use...
  7. Use descriptive names and the description field [Profile Best Practices] - Story From: Popular Ideas The corollary to 'a rose by any other name is still a rose', is 'a profile by any other name is still a profile'.  But what you name your profiles can have important administrative implications.  Many...
  8. Mass Edit profiles using Enhanced Profile List Views [Profile Best Practices] - Story From: Popular Ideas In an earlier blog, I discussed the importance of naming and using a profile's description.  What I find talking with admins is that they really need a way to compare and surface more of a profile...
  9. Report on who has administrative rights [Profile Best Practices] - Story From: Recent Ideas Do you know who has a profile that may be a security risk?  Have you been audited and needed to quickly determine what profiles contribute to that risk? The security team at salesforce.com created a...
  10. Business “Value” Metrics Are Needed To Gauge Data Management and Governance Success More than half (60.8 percent) of 400 technology executives polled online by Deloitte believe metrics that gauge cost, time, quality and risk, along with governance compliance dashboards, are the most effective types of data management and...