Salesforce Certified Advanced Administrator - Part 1

Salesforce Certified Advanced Administrator - Part 1

We build an Asset Management App in this course.

If you have attained the Salesforce Administrator Certification, you are ready to start the journey to becoming an Advanced Administrator. Become a Salesforce Certified Advanced Administrator by enrolling in this first course of a three-course certification course series.

I have taught over 90,000 students on the Salesforce platform and I want you to join me in my latest course. I have structured this course to go in-depth on the first three Knowledge Areas of the Salesforce Certified Advanced Administrator Exam Guide:

Security and Access

Extending Custom Objects and Applications

Auditing and Monitoring

The Salesforce Certified Advanced Administrator Certification has a pre-requisite that you have an active Administrator Certification on file - if you have not attained your Administrator Certification, I recommend that you first complete that certification and locate my relevant training courses for that certification via my instructor profile.

We will go in-depth on all of the core concepts and topics of the Salesforce Security Model in this course. It's a deep dive on user accounts, licenses, profiles, permission sets, profiles, roles, groups, teams, territories and more.

This course is recorded in Salesforce Lightning Experience.

Salesforce Certified Advanced Administrator - Part 1
  • Course Introduction, Exam Guide and Security and Access Introduction

    Resource:

    Advanced Administrator Exam Guide - https://developer.salesforce.com/resources2/certification-site/files/SGCertifiedAdvancedAdministrator.pdf

  • Salesforce Security Model Overview

    In this lesson, I provide a high-level overview of the Salesforce Security Model. 

    Resource:
    A Guide to Sharing Architecture - https://developer.salesforce.com/docs/atlas.en-us.dat.meta/dat/dat_components.htm

  • User License Types

    Data access in Salesforce begins with the User. Levels of access vary based on the type of user that is logging in. It is important that you understand the different license types available in Salesforce.

    You can view your organization’s licenses in Company Information via Setup.

    Resource:
    User...

  • Profiles

    Profiles and permission sets provide object-level security by determining what types of data users see and whether they can edit, create, or delete records. For each object, the “View All” and “Modify All” permissions ignore sharing rules and settings, allowing administrators to quickly grant acc...

  • Permission Sets

    In this lesson, we look at permission sets, and profiles vs. permissions 

  • Record and Field Level Access

    In this lesson, we go over record and field access levels.

  • Sample Questions #1 & #3 from the Exam Guide

  • Setting Organization-Wide Defaults

    In this lesson, we refer to the Salesforce Security Model Diagram, and how the Org-wide defaults specify the default level of access users have to each other’s records.

    Resources:
    Set Your Organization-Wide Sharing Defaults Help Article - https://help.salesforce.com/articleView?err=1&id=admin_sh...

  • Controlled by Parent

    In this lesson, we look at the relationship between various objects, first referring to the Sales Objects ERD Diagram found within the SOAP API Developer Guide. We then use the Schema Builder to further look at the relationship types between Account, Contract, Contract, Case and Opportunity.

    Res...

  • Roles and the Role Hierarchy

    A role hierarchy represents a level of data access that a user or group of users needs. The role hierarchy ensures that managers always have access to the same data as their employees, regardless of the organization-wide default settings. Role hierarchies don't have to match your organization cha...

  • Logging in as Another User

    In this lesson, we grant the ability for administrators to log in as other users in our org. We then adjust the Session Settings to unlock the Force relogin after Login-As-User setting. We also adjust Jim Doe’s profile to make him a Lightning Experience user.

  • Profiles vs. Roles

    In this lesson, I place myself at the bottom of the Role Hierarchy and place Jim Doe above me as my manager.

    We then demonstrate how Jim is unable to create a new Account record.

  • Ownership-Based Sharing Rules

    Ownership-based sharing rules allow for exceptions to organization-wide default settings and the role hierarchy that give additional users access to records they don’t own. Ownership-based sharing rules are based on the record owner only.

  • Criteria-Based Sharing Rules

    In this lesson, I create a criteria-based sharing rule. We specify that any accounts that are named Sony or have a Start Year of 2018 should be shared with the Director, Channel Sales Role and Subordinates. We also create a new ownership-based sharing rule to better fit our scenario and to replac...

  • Manual Sharing

    In this lesson, I manually share an account record with other users, after first confirming through the Sharing button that they don’t already have access through some other means.

    Resources:
    Lightning Sharing App on the AppExchange - https://appexchange.salesforce.com/appxlistingdetail?listingI...

  • Teams Access

    In this lesson, we look at Team Access – specifically related to Account Teams, Opportunity Teams and Case Teams. We enable Account Teams and Opportunity Teams. We also cover how to specify default Account and Opportunity Teams. 

  • Record Ownership and Queues

    In this lesson, we go over record ownership and queues. 

    Every record must be owned by a single user or a queue. The owner has access to the record, based on the Object Settings for the owner’s profile. For example, if the owner’s profile has Createand Read permission on an object, but not Edit...

  • Public Groups

    In this lesson, I demo how to create a public group. 

  • Running the Health Check

    In this lesson, we run the Health Check for our org. I address one of the issues listed in the report and then re-run the Health Check to see the impact on our scores.

    Resource:
    Health Check Help Article -https://help.salesforce.com/articleView?id=security_health_check.htm&type=5

    Use Health Che...

  • Account Owner Report

    In this lesson, I enable the Account Owner Report. We then run the report while logged in as Jim Doe. I also removed Jim Doe from my Default Account Team and also removed my Role designation on my user account to block access to my records for Jim. This was to demonstrate that although Jim does n...

  • Communities’ Security Settings

    Resource:
    Who Can See What in Communities -https://help.salesforce.com/articleView?id=networks_visibility.htm&type=5

  • Record Type Security Considerations

    In this lesson, we introduce Record Types to the Asset object. We create Record Types for Medical Equipment and Office Equipment. We discuss how Record Types are leveraged to associate Page Layouts by Profile, as well as Picklist Values that are available. In addition, we discuss how Record Types...

  • Delegated Administration

    In this lesson, we explore the use cases and functionality of Delegated Administration. Use delegated administration to assign limited admin privileges to users in your org who aren’t administrators. For example, let’s say you want the Customer Support team manager to manage users in the Support ...

  • Territory Hierarchy Access Introduction

    In this lesson,  we explore the territory hierarchy and its single dimensional, additional hierarchy. Which can be structured by business units or any kind of segmentation in a hierarchical structure.