You are here:
Salesforce CRM Permissions
When you connect to an org, the Data 360 Salesforce Connector permission set is created to allow access to Data 360 objects and fields. You can edit the Data 360 Salesforce Connector permission set to meet your organization’s needs.
- View All Records, Modify All Records, and View All Fields permissions are object permissions. View All Records and View All Fields must be granted on objects and fields to ingest data. View All Fields is enabled by default. Users with the View All Fields user permission can view all fields and field data for all objects, regardless of assigned field permissions.
- View All Records isn't enabled by default. This permission is required to enable the Query All Fields permission, which grants users access to content files and objects.
- Users with the View All Data or Modify All Data user permission can view or modify all apps and data, even if the apps and data aren’t shared with them.
- Data 360 uses a system user called the Platform Integration User. Permissions granted through permission sets to this user determine the data you retrieve from Data 360.
- Grant permissions on related objects even if you don’t ingest the related objects into Data 360. Ingested objects that reference related objects need permissions to access the related object information and create a data stream.
- Starting In the Winter '25 release:
- The Data 360 Salesforce Connector permission set includes the View All Data permission enabled by default for new orgs. For existing Data 360 Salesforce Connector permission sets, you can manually apply the View All Data permission or set the object permissions one at a time.
- The name of the
sfdc_c360a_sfdctrust_permSetAPI has been changed tosfdc_a360_sfcrm_data_extract. This is an internal API, but it's displayed on the details page for the Data 360 Salesforce Connector permission set. Any scripts that use the retiredsfdc_c360a_sfdctrust_permSetAPI name will return 0 after you upgrade to Winter '25.
- Access to the SurveyQuestionResponse object is controlled by the SurveyResponse object. To ensure data ingestion for the Survey object, grant View All Records or Modify All Records permissions for the SurveyResponse object.
- Changes to permission sets in your Salesforce CRM org could impact the default behavior of your data bundles in Data 360.
- To allow users to access tasks and events, enable the Access Activities system permission in the Data 360 Salesforce Connector permission set.
- Enable Object and Field Permissions for CRM Connections
You can edit the Data Cloud Salesforce Connector permission set to allow ingestions of objects and fields into Data 360. - Enable Permissions for CRM Streaming
For CRM streaming, set these system and user permissions. - Enable Permissions to Ingest Salesforce Classic Encrypted Salesforce CRM Objects and Fields
Values in Salesforce Classic custom encrypted fields ingested from connected Salesforce CRM org are masked in Data 360 by default. You can opt to ingest them as unmasked values instead. - Salesforce Commerce Object Permissions
When you enable object and field permissions for Salesforce Commerce objects, object names can differ under the connector integration permission sets.
Did this article solve your issue?
Let us know so we can improve!
