User Security

3 minute read

Next Steps

This screen focuses on user security; here, you can assign permission sets to give Salesforce users different access levels.

Permission sets in Salesforce are designed to be additive, meaning they build upon existing access rights. Therefore, if a user already has access to our application independently of any permission set, removing them from a permission set will not revoke their access.

Next Steps

Below are two articles that we recommend reading and the best next steps.

General Settings
Setup Guide

FAQs

Why do I see the message: “You do not have the correct permissions to access Mailchimp”?

This error typically means the Mailchimp account you're using with the Mailchimp for Salesforce integration does not have the necessary user role permissions to access the Mailchimp API.

Minimum required role:
Your Mailchimp user must have at least the Manager role to successfully connect and sync data.

Mailchimp user roles and access levels:

Viewer – Not sufficient
Author – Not sufficient
Manager – Minimum required
Admin / Owner – Full access

Users with Viewer or Author roles will not be able to use the integration and will see this error.
How to check and update your role:

Log in to your Mailchimp account.
Go to Account → Settings → Users.
Confirm your role is Manager, Admin, or Owner.
If needed, ask an Admin to update your role or use an account with sufficient permissions.

For more information on user roles in Mailchimp, visit:
https://mailchimp.com/help/manage-user-levels-in-your-account/

After updating your role:

Reconnect the integration from within Salesforce.
Try your action again. The error should no longer appear.

How Can You Manage Record Ownership and Sharing Settings for Mailchimp in Salesforce?

The Salesforce Security Owner can be found on the Sync Settings page. This is the Salesforce user who will become the record owner for any Mailchimp records we create in Salesforce. If you have multiple connected Mailchimp accounts, you can choose a different security owner for each.

Changing the Salesforce Security Owner
To change the Salesforce Security Owner, click the dropdown menu and select Change User.

Note: This change will only apply to new records. However, if you want to update existing records, you can run a Full Sync to update all records accordingly.

The Salesforce Security Owner controls Record Ownership & Security and can be used within standard Salesforce security settings.

For example, you could set the Subscriber List, Subscriber List Membership, and Email Tracking History objects to Private. This would restrict access, allowing only the record owner (Salesforce Security Owner) to view these records.

You can grant access to other Salesforce users using standard Salesforce Sharing Settings.

Sharing Settings
Once you've updated the record owner settings, you can implement standard Salesforce Sharing Settings to control access. To restrict access, start by setting the following objects to Private:

Mailchimp Account
Mailchimp Campaign
Mailchimp Email Activity
Mailchimp List
Mailchimp Member
Mailchimp Group

By making these objects private, only the record owner will have access. To allow other Salesforce users to access these records, you can create and manage Sharing Rules.

How do I give Mailchimp access to a Salesforce user?

It's easy to provide access. By default, anyone who has a system administrator profile will have access. Depending on how they interact with the app and data, you must assign a permission set to give other Salesforce users access.

This is covered in more detail here - https://www.beaufort12.com/mailchimp/support/user-security

In this article

Admin Guides

User Security

Next Steps

Next Steps

FAQs

Partners

Legal

Product

Resources