Deploying Functional Permissions
To deploy functional permissions in your org:
- Create permission sets with the correct standard Salesforce object access. For more information, see Salesforce Object Permissions Required for Permission Checks
- [Optional] Customize any permission set groups as required. For more information, see Customizing Permission Set Groups.
- Assign the required permission set groups to each SCM user.
- Assign the required standard Salesforce object access permission set described in step 1. to each SCM user. For more information, see Salesforce Object Permissions Required for Permission Checks.
- Deselect “Disable Permission Checks” in the SCM Permission Settings custom setting.
- Conduct user acceptance testing and review any permission error logs. For more information, see User Acceptance Testing and Permission Error Logs.
- Customize any permission set groups as needed.
- Repeat steps 5 and 6 as required.
User Acceptance Testing
Once you have reviewed the FinancialForce permission set groups and amended them as required for the roles in your organization, we recommend that you test them to confirm that they work as expected.
We suggest the following steps as a guideline:
- Activate the Permission Error Logging feature. We recommend that you perform this task as an administrator, in a Sandbox org. This helps to identify any missing permissions if your user acceptance testing fails. For more information, see Permission Error Logs.
- Assign the correct permission set groups to the user who will be carrying out the tests.
- Ask the user to work through the features and objects required for their role.
- Once the testing of an area has been completed, review the errors created in the permissions error log, and add the required permissions to the user.
- [Optional] Edit user access to data or other assets by removing permission sets or adding assets to the muting permission set that is assigned to the permission set group. For more information, see Muting permission sets.