The Blog - Expert Thoughts & Opinions

Community User Management

Granting Partner User access to a Community can typically be a laborious process. The System Administrator must enable the Account for use on the Community site. The user must then enable Partner Users for any Contacts on the Account (which associates a standard User record with the Contact record). The Partner User will then be emailed their login credentials by Salesforce thus granting access to the Community.

However, in large Partner Communities with many users, these requests can quickly add up without even considering other requests such as changing user details, revoking access etc. Here we will explore a way of delegating all user access control to our Partner Users.

Firstly we will define a hierarchy of custom Profiles for our Partner Users. The level of the hierarchy is completely configurable - we just need to ensure that we have a Profile that designates a Partner User as a ‘Super User’ and other profile(s) that designate ‘Regular Users’. 

We can then build a user management Lightning Component on our Community that gives our ‘Super User’ visibility of all of their users (associated by Account) with the ability to add users, modify permissions, change emails, and all other related admin functionality that is required. We can lock down record access by setting the Default External Access in our Sharing Settings to private and then open up the access required by our ‘Super User’ via Sharing Sets (the Community equivalent of Sharing Rules) ensuring he/she can see and edit the users that fall under his/her account. Finally, we can create an Apex Controller to call from our component to handle all of the user update logic.

User Management Component

User Management Component

Create a new Partner User via the Community

Create a new Partner User via the Community

We can control access to the user management component on our Community by using the built-in Manage Audiences feature available in Salesforce Communities to restrict access to pages based on different criteria. In our case, the criteria would be that the logged-in user has the ‘Super User’ Profile. We can take this one step further and define Custom Permissions for other sensitive pages on our Community that we may wish to restrict access to. Again this is achieved by making use of the versatile Manage Audiences feature which allows for a range of different criteria from which to select. Of course, behind the scenes, the assignment of the Custom Permissions will be controlled by our user management component!

Defining Audiences for Page Access

As you can see, we have now given our Partner Users the full ability to manage their internal users in our Community. All that our System Administrator will need to do is to give a delegated Partner User the custom ‘Super User’ Profile and that’s it. No more Community access ticket requests! If you would like to see a demo of this functionality or how we might implement this in your Partner Community, please contact us below for a hassle-free consultation.

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

Today's post is by one of our Salesforce Developers, Liam Behan.

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

As always, thanks for reading, if you enjoyed this post please feel free to share it and tag us @Pexlify

If you’re interested in Salesforce Solutions, contact us today to set up a hassle-free consultation.