Im having issues with who can access/view leads and accounts in my org. I want people to be able to view who owns a lead/account to avoid potential for duplication. It is a touchy area in our business so we need people to be able to view this but not any further details of the account.
Also hierarchies are enabled in the org, this is allowing certain people view/edit people who are below them in the hierachy lead/accounts. Do i eliminate the hierarchy/create a flat one or is there a way to revoke the permissions?
I know its a lot but any help would be great.
Thanks.
3 respuestas
You can't revoke from higher up the hierarchy, that option only exists for certain objects. You can tell by whether you can change "Grant Access Using Hierarchies" under Setup > Security Controls > Sharing Settings
You also can't really only open up access to just the name with nothing else. We went through this recently where everyone had to see the name of a file, but not the file. We ended up with multiple objects, Apex sharing, it was a mess. I would never recommend that with accounts.
That being said, you could theoretically create a mirror object that only held the Account Names, but that would be a nightmare to maintain.
I would take a hard look at duplicate management coming in a few weeks and see if that will help. I haven't had a chance to look at it in a private sharing model, but you may be able to come up with something.
http://releasenotes.docs.salesforce.com/en-us/spring15/release-notes/rn_sales_duplicate_management_intro.htm
