Grant Access to Shield
Manage user access to individual Shield products by assigning user permissions.
Required Editions
| Available in: Enterprise, Performance, Unlimited, and Developer Editions with the Salesforce Shield, Event Monitoring, Field Audit Trail, or Shield Platform Encryption add-on license. |
General Access for the Shield App
If you grant your users access to either Data Detect, Event Monitoring, or Shield Platform Encryption, then they can view the Shield app by default. Review special considerations for Data Detect and Field Audit Trail.
Grant View-Only Access to the Shield App
To grant view-only access to the Shield app, assign users the View Shield App Pages permission. This option is useful for auditors or other limited users who need visibility into your Shield implementation. Users with this permission can view all Shield app pages except for Data Detect, and they can also use Field Audit Trail's Field History Explorer. They can’t change any Shield settings or configurations.
Access Data Detect
See Grant User Access to Data Detect.
Access Event Monitoring
Access Field Audit Trail
- To view archived data, users need the View All Data user permission.
- To configure Field History Tracking for a given object, users need Edit access for that object.
- To access Field History Explorer, users need the View Shield App Pages permission,
unless they already have the user permissions associated with a different Shield product.
Field History Explorer is available only within the Shield app.Note The results that a user sees when viewing a record’s field history are limited to the user’s object Read access. For example, if a user lacks Read access for the Contact object, then Contact fields are excluded from the record search results.
Access Shield Platform Encryption
See Which User Permissions Does Shield Platform Encryption Require?.
