Dear All,
There are 2 business units under root business unit let say B1 and B2. A user (U1) belongs to business unit B1 and other user (U2) belongs to business unit B2. Both users (U1 and U2) are associated to a security role “Branch Users”.
The scenario is users can assigned record (Lead) to the users belongs to their business unit only but can share the record (Lead) to all the users of organization.
Now the problem is for “Branch Users” role if I am giving organization level read permission on “Users” entity then users (U1 and U2) can share lead to all users of the organization but the same time users(U1 and U2) also can assigned lead to all organization
users. If I am giving business unit level read permission on “Users” entity then users (U1 and U2) can only see users of their business unit at the time of assignment but they are not able to see all users of organization at the time of sharing a lead.
Please suggest how to implement this particular scenario to resolve this conflict of read permission on User entity.
Thanks
Sartaj