Domain separation (also known as multi-tenancy) is a way to separate data into
Domain separation is best for those customers who:
- Need to enforce absolute data segregation between business entities (data separation).
- Customize business process definitions and user interfaces for each domain (delegated
- Maintain some global processes and global reporting in a single instance.
- Separate data between customers or sub-organizations.
- Have minor or moderate process differences only among customers or sub-organizations.
Alternatives to domain separation include:
- Before business rules
- Access control list rules (ACLs)
- Security on related record
- Custom views
- Form layouts
- UI action conditions
- Advanced reference qualifiers
Warning: Before activating domain separation, consult your representative to verify
that it is suitable for your environment. Domain separation adds a level of administration
overhead. Although it can be disabled, it cannot be removed from an instance.
Members of a domain only see the data contained within their domain or the child domains that
are lower in the domain hierarchy. By default, all users and all records are members of the
global domain unless an administrator assigns them to a particular domain. Once you assign a
user or a record to a domain, the instance compares the user's domain to the record's domain to
determine whether the user can view the record. For example, consider the following domain
In this domain hierarchy:
- Bow Ruggeri can see any records in the Database Atlanta or the global domain.
- Don Goodliffe can see any records in the Database San Diego or the global domain.
- David Loo can see any records in the NY DB or the global domain.
- Fred Luddy, ITIL User, Beth Anglin can see any records in the Database, Database Atlanta,
Database San Diego, NY DB, or the global domain.
Users in the global domain can see all records, regardless of the record's domain settings. If
a user is a member of another domain, then there is no single visibility setting that allows
users to see across domains or allows users to see records at a higher level in the
Note: Guest users must be part of the global domain.
Exceptions to data separation
In general, data defined at a higher level in the domain hierarchy is not visible at lower
levels in the hierarchy. However, the following records behave like policies:
- Form sections
- Options in a choice list
When defined at a higher level in the hierarchy, these records are visible in child