General Description
stop users from generating certain records based on security. The idea here would be that the customer can define if a user can or cannot create a certain CRM entity such as Accounts or Opportunities. In this we could also add logic to support blocking creation based on ownership, IE stop a user from creating an Opportunity for an Account they don't own, for example.
Current Functionality
All users can generate all types of records within the system, but access to modifying records is limited by security role and manager assignment. Below is a summary of the current CRM role structure, modification to a users role assignment currently requires Magaya to update the settings:
A Representative (Rep) role will enable the user to manage all aspects of a lead, an account, or an opportunity that has been assigned to them (including activities). But the user cannot delete them, view other accounts not assigned to them, or alter any settings.
Managers can change certain settings, and they can view all of the information for Reps. who report to them. Managers cannot view or edit information that is assigned to users that do not report to them.
The Executive role has the same level of authority as the Manager role, but Executives can see all activity for all users regardless of the reporting structure.
Partners are limited to seeing and accessing only their own account information in the system and will no access to the Setup areas.
Organization Admin : if selected, this gives the user access to the Admin tab in Setup > Organization. With this, they are able to: set the first month of the Fiscal Year; enable / disable stage requirements and forecast categories; change address labels for accounts; recalculate analytics data; and set user quotas and reporting roles.
Future Functionality
Enhance the security model so that users are assigned access to individual entities. Once assigned access they will have the ability to create records of the assigned type, without this acces they can only view the records and append activities and notes.
Entities where access can be limited:
Accounts
Contacts
Leads
Opportunities
Campaigns
Activities