function readOnly(count){ }
Starting November 20, the site will be set to read-only. On December 4, 2023,
forum discussions will move to the Trailblazer Community.
+ Start a Discussion
Ashritha ReddyAshritha Reddy 

how can the roles impact on the security model?

how can the roles impact on the security model?
Best Answer chosen by Ashritha Reddy
Ishwar ShindeIshwar Shinde
Salesforce offers a user role hierarchy that you can use with sharing settings to determine the levels of access that users have to your Salesforce org’s data. Roles within the hierarchy affect access on key components such as records and reports.

Users at any role level can view, edit, and report on all data that’s owned by or shared with users below them in the role hierarchy, unless your Salesforce org’s sharing model for an object specifies otherwise. Specifically, in the Organization-Wide Defaults related list, you can disable the Grant Access Using Hierarchies option for a custom object. When disabled, only the record owner and users who are granted access by the organization-wide defaults receive access to the object’s records.
Roles determine user access to cases, contacts, and opportunities, regardless of who owns those records. The access level is specified on the Role Edit page. For example, you can set the contact access so that users in a role can edit all contacts associated with accounts that they own, regardless of who owns the contacts. And you can set the opportunity access so that users in a role can edit all opportunities associated with accounts that they own, regardless of who owns the opportunities.
After you share a folder with a role, it’s visible only to users in that role, not to superior roles in the hierarchy.

For more information on force.com security model, you can refer - 

https://developer.salesforce.com/page/An_Overview_of_Force.com_Security

Please mark this as best ans if this helps !!!

All Answers

Ishwar ShindeIshwar Shinde
Salesforce offers a user role hierarchy that you can use with sharing settings to determine the levels of access that users have to your Salesforce org’s data. Roles within the hierarchy affect access on key components such as records and reports.

Users at any role level can view, edit, and report on all data that’s owned by or shared with users below them in the role hierarchy, unless your Salesforce org’s sharing model for an object specifies otherwise. Specifically, in the Organization-Wide Defaults related list, you can disable the Grant Access Using Hierarchies option for a custom object. When disabled, only the record owner and users who are granted access by the organization-wide defaults receive access to the object’s records.
Roles determine user access to cases, contacts, and opportunities, regardless of who owns those records. The access level is specified on the Role Edit page. For example, you can set the contact access so that users in a role can edit all contacts associated with accounts that they own, regardless of who owns the contacts. And you can set the opportunity access so that users in a role can edit all opportunities associated with accounts that they own, regardless of who owns the opportunities.
After you share a folder with a role, it’s visible only to users in that role, not to superior roles in the hierarchy.

For more information on force.com security model, you can refer - 

https://developer.salesforce.com/page/An_Overview_of_Force.com_Security

Please mark this as best ans if this helps !!!
This was selected as the best answer
Nitin SharmaNitin Sharma
Hello ,

Roles is using for sharing record in salesforce. Users above in the role hierarchy can see and edit records which created by users who are in below in the hierarchy.
Go through below link it will help.
https://help.salesforce.com/apex/HTViewHelpDoc?id=admin_roles.htm

Thanks
Nitin sharma
  
 
silpa garikapatisilpa garikapati
Hi 



I am trying to delete unassigned roles in my org



Roles

Here in this screenshot i am trying to delete Accounting Excecutive Role but the Manging Director is reports to Accounting Excecutive is there any issue deleting Accounting Excecutive.

Please help me to find out

Thanks