User Security
3 minute read
In this article
The user security screen is part of our general settings tab. It allows you to easily assign or remove permission sets allowing you to control the access of your users from one conveinant location.
There are three permission sets you can assign to a user -
1. Limited Access - This allows you to give access to a user but they will only be able to see our product.
2. Standard Access - This gives broad access to our product but does not include the Mailchimp Settings tab.
3. Full Access - This gives access to the whole product including settings and is assigned by default to system administrators upon installation.
4. Guest Site Access - This gives access to the guest site user.
There are three permission sets you can assign to a user -
1. Limited Access - This allows you to give access to a user but they will only be able to see our product.
2. Standard Access - This gives broad access to our product but does not include the Mailchimp Settings tab.
3. Full Access - This gives access to the whole product including settings and is assigned by default to system administrators upon installation.
4. Guest Site Access - This gives access to the guest site user.
Permission sets in Salesforce are designed to be additive, meaning they build upon existing access rights. Therefore, if a user already has access to our application independently of any permission set, removing them from a permission set will not revoke their access.
Guest Site User
The guest site user is a very locked down Salesforce user which is being tightened every update by Salesforce. We have tested with the following:
1. Permission Set
Assign the guest site access permission set to the guest site user.
2. Organization-Wide Defaults
Set the following OWD settings for each Mailchimp-related object:
Mailchimp Account: Public Read/Write
Mailchimp Campaign: Public Read/Write
Mailchimp Email Activity: Public Read/Write
Mailchimp Group: Controlled by Parent
Mailchimp Group Category: Controlled by Parent
Mailchimp Import: Controlled by Parent
Mailchimp List: Public Read/Write
Mailchimp List History: Controlled by Parent
Mailchimp Member: Public Read/Write
Mailchimp Queue Item: Public Read/Write
3. Sharing Rules
If your integration involves syncing Leads, Contacts, or Accounts, ensure that sharing rules allow the guest site user to access these records.Without appropriate access, synchronization or API operations may fail due to insufficient permissions.
4. Guest Site User Access
The following Mailchimp objects must be shared Read-Only with the guest site user to enable data retrieval and display via the connected site or integration components:
a. Mailchimp Account
b. Mailchimp List
c. Mailchimp Member
d. Mailchimp Queue Item
5 . Verification Checklist
Before finalizing, verify the following:
a. All Organization-Wide Defaults match the configuration above.
b. Sharing rules include Leads, Contacts, and Accounts where applicable.
c. Guest site user has Read-Only access to the required Mailchimp objects.
d. Field-level security allows visibility to key Mailchimp fields.
e. Site Guest User profile is active and assigned the correct permissions.
1. Permission Set
Assign the guest site access permission set to the guest site user.
2. Organization-Wide Defaults
Set the following OWD settings for each Mailchimp-related object:
Mailchimp Account: Public Read/Write
Mailchimp Campaign: Public Read/Write
Mailchimp Email Activity: Public Read/Write
Mailchimp Group: Controlled by Parent
Mailchimp Group Category: Controlled by Parent
Mailchimp Import: Controlled by Parent
Mailchimp List: Public Read/Write
Mailchimp List History: Controlled by Parent
Mailchimp Member: Public Read/Write
Mailchimp Queue Item: Public Read/Write
3. Sharing Rules
If your integration involves syncing Leads, Contacts, or Accounts, ensure that sharing rules allow the guest site user to access these records.Without appropriate access, synchronization or API operations may fail due to insufficient permissions.
4. Guest Site User Access
The following Mailchimp objects must be shared Read-Only with the guest site user to enable data retrieval and display via the connected site or integration components:
a. Mailchimp Account
b. Mailchimp List
c. Mailchimp Member
d. Mailchimp Queue Item
5 . Verification Checklist
Before finalizing, verify the following:
a. All Organization-Wide Defaults match the configuration above.
b. Sharing rules include Leads, Contacts, and Accounts where applicable.
c. Guest site user has Read-Only access to the required Mailchimp objects.
d. Field-level security allows visibility to key Mailchimp fields.
e. Site Guest User profile is active and assigned the correct permissions.
FAQs
How can I provide view access?
Why do I see the message: “You do not have the correct permissions to access Mailchimp”?
How do I manage record ownership and sharing settings in Salesforce?
How do I give Mailchimp access to a Salesforce user?
In this article
