Skip to main content

Using the Permissions Agent

Launch a Permissions Agent to analyze Salesforce access, troubleshoot permission issues, and prepare audit-ready security insights.

Tess Geri avatar
Written by Tess Geri
Updated this week

Objective

Learn how to create and use the Permissions Agent to understand who has access to what in Salesforce, troubleshoot user permission issues, review security posture, and quickly identify governance risks and license waste.

What It Is

Sweep’s Permissions Agent helps you understand, analyze, and audit Salesforce access using plain-English questions. Instead of clicking through Setup or exporting spreadsheets, you can instantly see who has access to what, troubleshoot permission issues, and prepare for audits in minutes.

The Permissions Agent reads your Salesforce profiles, permission sets, users, and licenses to give you clear, actionable security insights.

How to Use the Permissions Agent

There is one primary entry point for launching the Permissions Agent in Sweep, through the Agentic Layer.

Open the Agentic Layer

From the top navigation bar, click Agentic Layer.

Select Permissions Agent

From there, select Permissions Agent.

Ask questions about Salesforce access

Once opened, the Permissions Agent is ready to answer natural-language questions about access, security, and permissions.

Example prompts:

  • “Which profiles have ModifyAllData?”

  • “Who can delete Accounts?”

  • “Show me users who haven’t logged in in 90 days”

  • “Compare System Administrator and Standard User”

Ask follow-up questions in the same conversation

The agent remembers context across your conversation, allowing you to drill deeper without repeating yourself.

Example:

  • “Which profiles have ModifyAllData?”

  • “How many users have those profiles?”

  • “Which of them haven’t logged in in 90 days?”

This makes it easy to move from high-level insight to specific action items in seconds.

Common Use Cases

Troubleshooting Access Issues

Quickly identify why users can’t see or edit records:

  • “Can the Sales User profile edit the Amount field?”

  • “What permissions does John Smith have on Opportunity?”

  • “What’s different between these two profiles?”

Security Audits and Compliance Reviews

Slash the time it takes to prepare for audits:

  • “Who has ModifyAllData or ViewAllData?”

  • “Which admins haven’t logged in recently?”

  • “Show me all users who can export data”

  • “How many System Administrators do we have?”

License Optimization

Find unused licenses and reduce costs:

  • “Which users have never logged in?”

  • “Show me license utilization”

  • “Who has expensive licenses but low activity?”

Did this answer your question?