📖 About this Domain
Implicit sharing is a built-in Salesforce sharing behavior that grants record access based on parent-child record relationships. This access is not configurable and is automatically managed by the platform to support business processes. It primarily applies to Account and its standard child objects like Opportunity, Case, and Contact.
🎓 What You Will Learn
- You will learn about Parent Implicit Sharing, where access to a parent Account grants access to its child records.
- You will understand Child Implicit Sharing, where a user's access to a child record can grant read-only access to the parent Account.
- You will explore how implicit sharing provides portal and community users access to their parent account and related data.
- You will identify the specific implicit sharing rules that apply to high-volume community users and their associated records.
🛠️ Skills You Will Build
- You will build the skill to diagnose unexpected record visibility caused by non-configurable implicit sharing rules.
- You will develop the ability to design scalable sharing models that account for the performance impact of implicit sharing, especially with data skew.
- You will gain proficiency in architecting solutions that leverage or mitigate the effects of implicit sharing for complex business requirements.
- You will learn to audit and explain the complete access picture for a user, factoring in implicit grants alongside explicit sharing configurations.
💡 Top Tips to Prepare
- Focus on the Account object, as it is the primary driver for most implicit sharing scenarios with its child records.
- Understand the concept of Account Data Skew and its performance implications on implicit sharing calculations and overall system health.
- Memorize which access levels (e.g., Read-Only vs. Read/Write) are granted by parent-to-child versus child-to-parent implicit sharing.
- Review scenarios involving community and portal users, as their access to parent accounts is a critical and frequently tested implicit sharing use case.
📖 About this Domain
This domain covers using Apex to manage record access when declarative sharing tools are insufficient. It focuses on manipulating Share objects via code to implement complex business requirements. Understanding Apex managed sharing is critical for handling dynamic, criteria-based access control scenarios.
🎓 What You Will Learn
- You will learn to identify scenarios requiring Apex managed sharing over declarative options like sharing rules.
- You will learn the structure of object Share tables and how to programmatically insert, update, and delete share records.
- You will learn to create and utilize Apex sharing reasons to manage and debug custom sharing logic.
- You will learn the performance implications and best practices for implementing programmatic sharing in large data volume environments.
🛠️ Skills You Will Build
- You will build the skill to write Apex triggers and batch classes that manage `SObject__Share` records.
- You will build the ability to design scalable sharing solutions that avoid record lock contention and mixed DML errors.
- You will build proficiency in troubleshooting and recalculating programmatic sharing logic during complex data operations.
- You will build the competence to articulate the trade-offs between programmatic and declarative sharing mechanisms to stakeholders.
💡 Top Tips to Prepare
- Memorize the key fields on a Share object, such as ParentId, UserOrGroupId, and RowCause.
- Practice coding solutions that handle bulk share record creation and deletion to avoid hitting governor limits.
- Understand how to query the `UserRecordAccess` object to verify the outcome of your programmatic sharing logic.
- Review the Salesforce developer guides on Apex managed sharing and the Sharing a Record Using Apex documentation.
📖 About this Domain
This domain focuses on the performance implications of sharing and visibility architecture in Salesforce. It covers how to design scalable sharing models that perform efficiently, especially in environments with large data volumes (LDV). You will analyze the impact of data skew, locking, and recalculations on system performance.
🎓 What You Will Learn
- The performance impact of data skew, including account, ownership, and lookup skew, on record locking and query performance.
- How to diagnose and resolve group membership locking issues caused by frequent changes to roles, territories, or public groups.
- The mechanics of implicit and explicit sharing, and how the Force.com query optimizer processes sharing rules.
- Strategies for designing scalable sharing solutions to avoid long-running share recalculations in LDV orgs.
🛠️ Skills You Will Build
- Ability to identify and mitigate performance bottlenecks caused by suboptimal sharing configurations and data distribution.
- Designing data models and ownership strategies that prevent record locking and contention in high-volume transaction scenarios.
- Evaluating the performance trade-offs between declarative sharing, programmatic sharing, and other visibility mechanisms.
- Architecting scalable solutions that account for future data growth and changes in the role hierarchy or group structures.
💡 Top Tips to Prepare
- Master the three types of data skew and their specific impacts on parent-child relationships and ownership.
- Understand the events that trigger share table recalculations and the strategies to minimize their performance cost.
- Study the performance differences between criteria-based sharing rules and ownership-based sharing rules in LDV contexts.
- Review Salesforce's best practices for managing group membership operations to avoid row lock errors during DML.
📖 About this Domain
This domain covers the foundational declarative tools for controlling record-level access within Salesforce. It focuses on configuring Organization-Wide Defaults (OWD), Role Hierarchies, and Sharing Rules to establish a security model without programmatic intervention.
🎓 What You Will Learn
- You will learn to establish the baseline record access for your org by configuring Organization-Wide Defaults.
- You will understand how the Role Hierarchy provides vertical access to records for users in higher-level roles.
- You will learn to apply owner-based and criteria-based sharing rules to grant wider access to specific sets of users.
- You will explore the use of Public Groups and Manual Sharing to handle exceptions to the standard sharing model.
🛠️ Skills You Will Build
- You will build the skill to design a scalable sharing model by correctly setting the most restrictive OWDs first.
- You will be able to architect a Role Hierarchy that accurately reflects data access needs, not just an organizational chart.
- You will develop the ability to implement complex sharing rule logic to handle exceptions to OWD and role hierarchy settings.
- You will gain the skill to evaluate the performance implications of sharing recalculations triggered by declarative changes.
💡 Top Tips to Prepare
- Master the impact of OWD settings like Private, Public Read Only, and Public Read/Write on record visibility.
- Deeply understand the 'Grant Access Using Hierarchies' setting for both the role hierarchy and custom objects.
- Practice distinguishing between use cases for owner-based sharing rules versus criteria-based sharing rules.
- Memorize the order of operations for record access evaluation, starting from OWD and layering on other declarative features.
📖 About this Domain
This domain addresses complex sharing requirements that extend beyond standard declarative configurations. It focuses on specialized solutions for scenarios like external user access, large data volumes, and team-based sharing. Understanding these use cases is critical for designing scalable and secure sharing models.
🎓 What You Will Learn
- Learn to design sharing models for external users in Experience Cloud using mechanisms like share groups and account role optimization.
- Understand the performance implications of sharing calculations in Large Data Volume (LDV) environments and mitigation strategies.
- Analyze the use of Account, Opportunity, and Case Teams to grant ad-hoc record access to specific user groups.
- Determine when to implement Apex Managed Sharing to solve complex business requirements not met by declarative sharing.
🛠️ Skills You Will Build
- You will build the skill to architect scalable sharing solutions for Large Data Volume (LDV) scenarios, mitigating risks like record lock contention.
- You will be able to design secure sharing models for external users in Experience Cloud, leveraging partner roles and share sets.
- You will develop the ability to implement programmatic sharing using Apex to handle dynamic and complex access requirements.
- You will learn to apply team-based sharing features like Account Teams and Opportunity Teams to facilitate collaborative access to records.
💡 Top Tips to Prepare
- Master the performance impact of ownership skews and sharing recalculations in Large Data Volume (LDV) environments.
- Deeply study the specific sharing mechanisms for Experience Cloud licenses, including sharing sets, share groups, and external account hierarchies.
- Clearly articulate the limitations of declarative tools to justify the use of Apex Managed Sharing for complex business logic.
- Practice designing solutions for scenarios that combine team selling, partner portal access, and implicit parent-child sharing.
📖 About this Domain
This domain focuses on Enterprise Territory Management (ETM) as a comprehensive account sharing system. It covers the configuration of territory models, hierarchies, and assignment rules to grant record access. ETM provides an alternative sharing model to the role hierarchy, based on account characteristics rather than user ownership.
🎓 What You Will Learn
- You will learn to configure territory types, build a territory hierarchy, and manage different territory models.
- You will learn to create and deploy account assignment rules that automatically place accounts into territories based on defined criteria.
- You will learn how Enterprise Territory Management impacts forecasting, reporting, and access to related standard objects like Opportunities and Cases.
- You will learn the key differences between the role hierarchy and the territory hierarchy for managing data access and visibility.
🛠️ Skills You Will Build
- You will build the skill to design a scalable territory structure that aligns with complex sales and service team alignments.
- You will build proficiency in managing the lifecycle of territory models, including planning, activating, and archiving.
- You will develop the ability to troubleshoot account assignment issues and understand rule evaluation logic.
- You will gain the skill to articulate the specific use cases and limitations of Enterprise Territory Management for a given business scenario.
💡 Top Tips to Prepare
- Master the concept of Territory Model State (Planning, Active, Archived) and its impact on data and user assignments.
- Focus on the implications of enabling territory-based forecasting and how forecast managers are assigned within the territory hierarchy.
- Practice creating complex account assignment rules and understand their order of execution to predict outcomes accurately.
- Clearly differentiate when to use the role hierarchy versus the territory hierarchy for account sharing to solve complex visibility requirements.
