You are here:
Field-Level Security for Custom Fields in Search
Field-level security specifies whether users in your Salesforce org can view and edit each field in an object. You can configure field-level security settings separately from Einstein Search. Users can search a protected field only if they have the appropriate field permissions. However, search can only protect up to 100 searchable custom fields per object with field-level security, even if you set field-level security for more than 100 custom fields. The search engine matches results based on information in unprotected fields. You can select which custom fields are protected.
All standard fields, custom picklist fields, and the first 100 custom fields per object are protected. If an object has more than 100 custom fields, the extra fields are unprotected. Search Manager shows how many objects have unprotected fields. To ensure that all sensitive fields that can impact search results are protected or removed, review each object with unprotected fields.
How Unprotected Fields Impact Search Results
Even if you have unprotected fields in search, users can’t see the fields and records that they don’t have permission to access. However, if the user doesn’t have field permissions, the search engine still matches results based on sensitive information in unprotected fields. While users without permissions don’t see the field in their results, they do see results matched based on that field. Prevent unwanted results by protecting the field in search.
For example, if you add the Trade Union custom field to the Employee object and the Employee object already has 100 or more custom fields, apply protection in Search Manager. If you don’t protect this field, users can search for the trade union’s name and find all employees in that trade union.
Apply Field-Level Security to Custom Fields in Search
Search can protect up to 100 custom fields per object with field-level security. For example, if you add the Trade Union custom field to the Employee object and don’t protect it, users can search for the trade union’s name and find all employees in that trade union. If an object has more than 100 custom fields, the search engine matches results based on information in the unprotected additional fields.
