Loading
About Salesforce Data 360
Table of Contents
Filter by (0)Add
Select Filters

          No results
          No results
          Here are some search tips

          Check the spelling of your keywords.
          Use more general search terms.
          Select fewer filters to broaden your search.

            Search all of Salesforce Help
            Search all of Salesforce Help
            Assign Data Access

            You are here:

            1. Salesforce Help
            2. Docs
            3. Data 360

            Assign Data Access

            For data governance, assign access to Data 360 objects using either role or attribute-based policies, or maintain an Allow All policy.

            Required Editions

            Available in: All Editions supported by Data 360. See Data 360 edition availability.
            User Permissions Needed
            To assign permission sets: System admin profile
            To assign a data space and to create tags and assign to objects and fields:

            Permission set:

            • Data Cloud Architect

            Depending on your selected policy, there are multiple steps to complete. bookmark Bookmark this page or keep it open in a separate window to refer to this topic.

            Role-Based Access Control

            To grant access based on roles, follow these steps.

            1. Assign a permission set to the user. See Create Data Cloud Users and Assign Permissions.
            2. Assign a data space to the permission set. See Manage Data Spaces.
            3. In the permission set, select the objects within the data space to grant access. See Create a Role-Based Access Control (RBAC) Policy in Data 360.

            Attribute-Based Access Control

            To grant granular access using attribute-based access policies, assign data spaces through permission sets and create an access policy.

            1. Assign a permission set to the user. See Create Data Cloud Users and Assign Permissions.
            2. Assign a data space to the permission set. See Manage Data Spaces.
            3. Create tags and assign to objects and fields. See Create a Tag in Data 360 and Apply a Tag to an Object or a Field Manually in Data 360.
            4. Create custom permissions and add them to a custom permission set. You can’t add custom permissions to standard permission sets or their clones. See Custom Permission Sets in Data 360
            5. Assign the permission set to users. See Create Data Cloud Users and Assign Permissions.
            6. Create object, field, and record-level policies to enforce granular access control based on specific access requirements. See Create an Object or Field Level Access Policy in Data 360 and Create an Record Level Policy in Data 360.
            7. Delete the out of the box Allow All policy (also known as a day zero policy).

            Allow All Policy

            When granular access isn't required, the Allow All policy grants users access to all objects in their assigned data spaces using permission sets. By default orgs have an Allow All policy.

            If the policy is deleted or needs to be created, see Create an Allow All Policy in Data Cloud.
             
            Loading
            Salesforce Help | Article