Permissions for CPQ Omnistudio Security Enforcement
The Omni Security Enforcement introduces enhanced permission validation for CPQ feature
flows for a more secure processing environment. This enforcement requires you to assign extra
permissions for CPQ flows.
Required Editions
Available in: Classic and Lightning Experience
Available in: Enterprise, Unlimited, and Developer
editions.
The requirement for these permissions varies based on how the CPQ flow triggers:
Administrators: Admin users have all required permissions. If a permission error occurs,
assign the missing permissions specified in the error message. If an Admin performs CPQ
runtime tasks, follow the standard user instructions to assign the necessary runtime
permissions.
Automated Process User: CPQ typically uses the Automated Process user for
asynchronous jobs. Other users can also be configured for this implementation, such as the
Platform Integration user. Assign the new permission set CPQ Security Enforcement
Async Jobs to any user who run the asynchronous job. Deploy the updated sample permission set
Note If
there are any scenarios where additional permission failures are reported even after
adding these permission sets, you can add the respective permissions mentioned in the
error message to unblock. Apply the same for FLS permission failures as
well.
Did this article solve your issue?
Let us know so we can improve!
Loading
Salesforce Help | Article
Cookie Consent Manager
General Information
Required Cookies
Functional Cookies
Advertising Cookies
General Information
We use three kinds of cookies on our websites: required, functional, and advertising. You can choose whether functional and advertising cookies apply. Click on the different cookie categories to find out more about each category and to change the default settings.
Privacy Statement
Required Cookies
Always Active
Required cookies are necessary for basic website functionality. Some examples include: session cookies needed to transmit the website, authentication cookies, and security cookies.
Functional Cookies
Functional cookies enhance functions, performance, and services on the website. Some examples include: cookies used to analyze site traffic, cookies used for market research, and cookies used to display advertising that is not directed to a particular individual.
Advertising Cookies
Advertising cookies track activity across websites in order to understand a viewer’s interests, and direct them specific marketing. Some examples include: cookies used for remarketing, or interest-based advertising.
