I have three user e.g A, B and C
I have implemented hierarchy model with depth 3.
Hierarchy is A >> B >> C.
Each user has following roles for Service Request entity.
I have created a service request record "record 1" and assign it to user A - Then user "A" assign it user "B".
As per my testing and reading some articles.
User "A" edit/read records of user "B" & User "A" cannot edit records of User "C". This is fact and it is functionally of hierarchy model.
But I want User "A" should not able to edit user "B" records, he should just read those records assigned to "B". I achieve this by giving user level create privileges - But at the same time I don't allow these user to create new records.
Any help please..
Thanks in Advance!
*This post is locked for comments
Hi,
I believe if you don't want the "manager" to have write access to the direct report data, you should not be using hirerarchy security.
Instead, you might, for example, reorganize the business units.. There could be a manager BU, and, under that one, a regular user BU. Regular users would have a role permitting access to their own records. Manager user would be placed in the manager BU, and would be assigned a role permitting access in the Bu and children BU-s
Hi,
Your current design should work as expected.
If A is in position 3, B in position 2 and A in position 1.
All user get to read all record as the security role is org level.
A cannot edit record owned by B or C
B can edit record owned by A not C
C can edit record owned by B not A
Since you have not given create priv, user wont be able to create record. What exactly are you asking for?
Stay up to date on forum activity by subscribing. You can also customize your in-app and email Notification settings across all subscriptions.
André Arnaud de Cal... 290,902 Super User 2024 Season 2
Martin Dráb 229,297 Most Valuable Professional
nmaenpaa 101,156