Understanding Salesforce Public Site Security

Guest User Security Policy

• Salesforce GUSP [Guest User Security Policy] is designed to limit the number of records that a guest user has access to (but not what they can see on those records).
• TargetX December '19 upgrades were designed to limit the need for sharing of records with Guest Users to comply with GUSP.
• Clients should follow Salesforce guidance on reassigning ownership of guest records.

Guest User Access Report

• Salesforce Guest User Access Report provides information on guest sharing that violates GUSP recommendations.
• Salesforce Guest User Access Report also provides information about what fields a Guest User has access to on records.
• Clients should use our permission scanner to create permission sets along with our feature specific recommendations for field permissions for guest site users.
• Clients should not have read access granted to all fields for guest users on sensitive objects such as contact.

Lightning Features for Guest Users

The Salesforce setting, Lightning Features for Guest Users, is enabled by Default. TargetX products do not require Lightning features, so we recommend you turn this setting OFF to limit access to your Sites:​

1. Navigate to Setup and search for Sites.
2. Click the Site Label.
3. Click Edit.
4. Uncheck the Field for Lightning Features for Guest Users.
5. Save your changes.

Note: Be sure to create Sharing Rules for your Sites to grant appropriate access to guest users. This will ensure they can view or interact with necessary records while maintaining security and compliance.