Saturday, October 10, 2015

Delegated administration in salesforce.

Concepts of delegated administration

Let's start with an example where TCS has 5,000 Salesforce Enterprise Edition licenses, and they have only one system administrator. The system administrator receives ample requests to reset the password, change login hours, unlock users, or change their sharing settings daily. To reduce this, the system administrator can go ahead and set up a delegated administrator, so that any other user who is a delegated administrator can help with the workload.


The delegated administrator is a concept that extends certain admin privileges to non-admin users in order to allow them to perform admin functions. The actions that delegated administrators can perform include the following:
User administration: For the named roles and their entire subordinate roles, delegated administrators can create and edit users and reset passwords, as well as unlock users in named roles. Delegated users can also log in as users who have granted login access to their administrator. They can also do quota settings, create default teams, and create personal groups.
Assignable profiles: The delegated administrators can assign only the profiles granted to the delegated administrator.

Custom object administration: Access can be granted to delegated administrators to serve as administrators for certain custom objects and their associated tabs only.

Setting up a delegated administration
To set up a delegated administration for your organization, follow these steps:
1.Navigate to Setup | Administer | Security Controls | Delegated Administration.
2.Click on New as shown in the following screenshot:


     3. It will redirect you to a New Delegated Group window, where you have to enter data in the Delegated Group Name field as well as optionally select the Enable Group for Login Access checkbox. The details of each field are as follows:

·Delegated Group Name: This specifies the group name.

·Enable Group for Login Access: This option is selected if you want to allow the delegated administrator to log in as a user belonging to the role hierarchy that they manage.


4. Click on Save; this will redirect you to the Delegated Group Detail page. This will look like the following screenshot:


    5. After creating the delegated user group, you have to do a few tasks, defined as follows:
             
   Delegated administrators: You can add users to this group who are a part of the delegated administrator group. To do this, click on the Add button available on the list related to Delegated Administrator; it will redirect you to a new page and add users (click on the magnifying glass icon) as per your business requirement. Once done, click on Save:




    User Administration: Now, you have to specify the roles and subordinates that the delegated administrators can create and edit. To do this, click on the Add button available in the list related to Role Administrator; this will redirect you to a new page and add a role (click on the magnifying glass icon) as per your business requirement. Once done, click on Save:







Assignable Profiles: Here, you can specify the profiles of the delegated administrators of this group and these can be assigned to the users they create or update. To do this, click on the Add button available on the list related to Assignable Profiles; this will redirect you to a new page and add assignable profiles as per your business requirement. Once done, click on Save


Delegated administrators cannot assign profiles with the permission Modify All Data, such as system administrator profiles.
Custom Object Administration: In this section, you can specify the custom objects that the delegated administrators of a group can administer. To do this, click on the Add button found on the list related to Custom Object Administration; it will redirect you to a new page, and here, you can add custom objects (click on the magnifying glass icon) as per your business requirement. Once done, click on Save:



Now, you are done with the delegated administrator settings. You can change these settings any time by navigating to Setup | Administer | Security Controls | Delegated Administration.
These changes are captured under View Setup Audit Trail. If you need to check the Audit Trail for these changes, navigate to Setup | Administer | Security Controls | View Setup Audit Trail. Finally, our delegated administrator page will look like the following screenshot:




Thanks for reading....







16 comments:

venky said...

thanks for ur info

Unknown said...

Thanks for doing great work. The Author sharing Salesforce Concepts of delegated administration it’s good for Salesforce Administrator. Keep sharing, if you want to become a Salesforce Administrator and then just have a look: https://goo.gl/z6uyuj

Anonymous said...

Thanks nice info ...:)

Unknown said...

Nice a good information SalesForce Online Training

Unknown said...

ok

Sakthi Murugan said...

Excellent information on your blog. thank you for taking the time to share with us. Amazing insight you have on this. it's nice to find a website that details so much information.
Salesforce Developer 501 Training in Chennai | Salesforce Developer 502 Training in Chennai

Supriya Sharma said...

Salesforce Consulting Company: Salesforce Integration Consulting at consilat.com

Muralidhara Raju Indukuri said...

Nice matters are sharing.
aws training in hyderabad

SalesForce said...

Thank you for your information.This is excellent information.Also refer mine.

salesforce training in Newyork

salesforce online trainings in USA
salesforce job placement assistance





unknown said...

Hiiii....Thanks for sharing Great info...Nice post...Keep move on...
Salesforce Training Institutes in Hyderabad

maddison said...

Thanks for sharing. This must be super helpful for so many students, specially who want to learn salesforce. I really appreciate your detailed information on salesforce training. I am learning
salesforce from JanBask Training and I wish it will help me or many students who looking for information like this.
I also found some other interesting blogs from there on salesforce on many topics they were also very important.

martin velly said...

This is realy a Nice blog post read on of my blogs It is really helpful article please read it too my blog Delete a Facebook group. you can visits our websites or toll free no +1-866-558-4555. solve your problem fastly.

akhilapriya404 said...

Nice information thank you,if you want more information please visit our link
salesforce training
salesforce login

Brad Litt said...

best rice cooker. ong gone are the days where hoteliers needed to rely on a 3rd party

Unknown said...

sad shayari persistence you put into your blog and

Javeria said...

How do these delegated users log in as other users? Same way as administrators do?

Post a Comment

 
| ,