Skip to main content

Salesforce - Enable guest user on your digital experience site or community

Learnings - 


๐Ÿ‘‰How guest user profiles work in Salesforce

๐Ÿ‘‰Configuring a guest user profile

๐Ÿ‘‰Managing access and best practices


Guest users in Salesforce Communities/Sites 

  • Guest user profiles are used for controlling the public or unauthenticated access to your org's data i.e. it controls the access you give to the users who have not logged into your community. 

  • Guest users can always see login and login error pages in your site. 

  • Every time a portal or site is created in your Salesforce org, a Guest User Profile is automatically created at the backend. These auto-created profiles are very restrictive and do not allow any data or object visibility to guest users.

  • Each community or site has a guest user associated with it. If you have 10 communities in your org, you will have 10 different guest users.

Configuring guest user profiles in Salesforce

Guest user profiles are not visible in the Setup>Profile section. Follow the below steps to go to the Guest user profile.

  • Navigate to Setup>Digital Experiences>All Sites.

  • Click on Builder.

  • In Experience Builder, click gear icon() and select General.

  • Under the Guest User Profile section, click the profile name.

  • Click Edit //You are now in the Guest User Profile section.

    • Do changes as per your business rules. Try to expose as little as possible.

    • Create sharing rules for the objects you want to share.

  • Click Save.

Best practices and considerations

  • Guest users are always active in any org and have access to any active community which is public.

  • Configure an owner for any record created by guest users so that guest users do not own anything. If the guest user is the owner of the record, any guest user will be able to see the record. For example, if Mukesh is a guest user and creates a case and becomes owner, then Rakesh, also a guest user will be able to see the case. 

  • Use the Secure guest user record access setting. It restricts the visibility and access that guest users have to your org’s data.

  • Review all default object permissions in the guest user profile, and apply the most restrictive permissions for the guest user. 

  • Review all system permissions, and deselect the permissions that aren’t necessary for your use case.

  • Review all Visualforce and Apex pages that guest users can access. Remove pages that you don’t want guest users to access.

  • Remove field-level access to fields that you don’t want guest users to see.



References:
https://help.salesforce.com/articleView?id=sf.rss_config_guest_user_profile.htm&type=5




Labels:

Comments

Post a Comment

Please comment your thoughts. It helps.

Popular posts from this blog

Integrate Salesforce to ChatGPT

Connecting ChatGPT with Salesforce You need to follow below steps in order to connect ChatGPT to salesforce. Create and configure your OpenAI account. Get OpenAI API keys to integrate. Setup Salesforce to be able to connect to ChatGPT. Write custom code to callout to ChatGPT and get response.                  1.              Create and configure your OpenAI account. Go to https://openai.com/ and setup your account. Click on Log in and it will take you to a page where you can sign up using various methods like google or your email. Once you have logged in into OpenAI, you will see below page. Please select API . Optionally, if you do not have idea or need knowledge on how ChatGPT works, please go through the documentations and references. 2.             Get OpenAI API keys to integrate. ...
1 comment
Read more

Salesforce LWC - Uncommon and Difficult, Tough, Tricky Interview Questions Answers | LWC interview: Advance Level

  How is LWC different from the Lightning Aura framework? Which is better to use? Aura components are upgraded to LWC to better utilize modern JavaScript and Web Stack. It was not possible for Salesforce to come with LWC before as the Web Stack would not support it. So, it is an upgraded version of the Aura component, hence it is always better in every way. However, when you develop Lightning web components, you also may need to use Aura, because LWC doesn’t yet support everything that Aura does. Always choose Lightning Web Components unless you need a feature that isn’t supported. Lightning web components are custom HTML elements built using HTML and modern JavaScript. Lightning Web Components uses core Web Components standards and runs natively in browsers, therefore, Lightning Web Components is lightweight and delivers exceptional performance. Aura components can be integrated within LWC, but it is not the same vice versa. Utilizing modern JavaScript makes it easier to be adopte...
2 comments
Read more