Create a User Role
In the role hierarchy, users have access to records owned by or shared with users in
roles below them. Roles within the hierarchy affect access on components such as records and
reports.
Available in: both Salesforce Classic (not available in all orgs) and Lightning Experience |
Available in: Professional, Enterprise, Performance, Unlimited, and Developer Editions |
User Permissions Needed | |
---|---|
To view roles and role hierarchy: | View Roles and Role Hierarchy |
To create, edit, and delete roles: | Manage Roles |
To assign users to roles: | Manage Internal Users |
For information on designing your sharing setup to improve performance and speed up sharing changes, see the Designing Record Access for Enterprise Scale guide.
Users at any role level can view, edit, and report on all data that’s owned by or shared with users below them in their role hierarchy, except in these two scenarios:
- For custom objects, you can disable the Grant Access Using Hierarchies setting on the Sharing Settings page. When disabled, only the record owner and users who are granted access have access to the custom object’s records.
- After you share a folder with a role, it’s visible only to users in that role, not to superior roles in the hierarchy.
- From Setup, in the Quick Find box, enter Roles, and then select Roles.
- If the “Understanding Roles” page is displayed, click Set Up Roles.
- Find the role under which you want to add the new role. Click Add Role.
- Add a Label for the role. The Role Name field autopopulates.
- Specify who the role reports to. The field is already populated with the role name under which you added the new role, but you can also edit the value here.
- Optionally, specify how the role name is displayed in reports. If the role name is long, consider using an abbreviation for reports.
-
Specify the role’s access to the child contacts, opportunities, and cases associated with
accounts that users in the role own.
For example, you can set the contact access so that users in the role can edit all contacts associated with accounts that they own. This access applies regardless of who owns the contacts. And you can set the opportunity access so that users in a role can view, but not edit, all opportunities associated with accounts that they own. This access also applies regardless of who owns the opportunities.
- Click Save.
Defer Sharing
Calculations in Salesforce Help.
When you edit groups,
roles, and territories, sharing rules are recalculated to add or remove access as needed.
Depending on the nature of your updates and your org’s setup, these sharing calculations can take
a while to complete. If you experience sharing evaluations or timeouts, consider deferring
sharing calculations before making large-scale updates, and then restart and recalculate sharing
at a later time. For more information, see