Permission Set Group
A Permission Set Group bundles multiple Permission Sets together into a single assignable unit, simplifying access management for users who need a combination of permissions.
Definition
A Permission Set Group bundles multiple Permission Sets together into a single assignable unit, simplifying access management for users who need a combination of permissions. Administrators can also add Muting Permission Sets within a group to suppress specific permissions, providing fine-grained control over the aggregate set of access.
In plain English
βHere's a simple way to think about it: Permission Set Groups bundle access without re-explaining the same combinations. Five Permission Sets per role Γ 50 roles is too much; Groups bundle the right Permission Sets per role into one assignable unit.β
Worked example
At SilverPeak Financial, the admin creates a Permission Set Group called "Senior Advisor" that combines the "Financial Account Access," "Client Portfolio Edit," and "Compliance Reporting" Permission Sets. Instead of assigning three separate Permission Sets to each senior advisor, the admin assigns one group. A Muting Permission Set removes the "Export Reports" permission to comply with data privacy regulations.
Why Permission Set Groups bundle access without re-explaining the same combinations
A Permission Set per capability is the right unit at the building-block level. A user in a real role rarely needs just one - a Sales Manager might need ten Permission Sets, a Service Lead another twelve, and assigning each one individually for every new hire is fragile and slow. Permission Set Groups bundle multiple Permission Sets into a single assignable unit, with all the underlying access calculated and presented to the platform as if it were one big set.
Groups also enable Muting Permission Sets - a way to subtract specific permissions from a group rather than rebuilding it from the ground up. Use them when a role mostly matches an existing group except for one or two things you don't want granted. Groups are how Permission Set hygiene scales past a small org; the alternative is per-user assignment of every constituent set, which doesn't survive past a few hundred users.
How to create Permission Set Group
Permission Set Groups bundle multiple Permission Sets into a single assignable unit β "Sales Manager Bundle" gives a user every permission set Sales Managers need at once. They're the modern best-practice grouping mechanism that replaced "clone the profile" workflows.
- Open Setup β Permission Set Groups
Setup gear β Quick Find: Permission Set Groups β Permission Set Groups.
- Click New Permission Set Group
Top-right of the list.
- Set Label and API Name
Convention: "<role/persona> Bundle" β e.g. "Sales Manager Bundle," "Service Tier 1 Bundle."
- Save
On Save you land on the group detail page. Permission Set Groups recalculate the combined permissions automatically when members change.
- Add Permission Sets
Permission Sets in Group section β Add Permission Set β multi-select the sets to bundle. Order doesn't matter β permissions are unioned.
- (Advanced) Add Mute Permission Sets
If you need to remove a specific permission from one of the included sets, create a Mute Permission Set and add it to the group. Mute is subtractive β rare, but powerful.
- Manage Assignments β assign users
From the group detail page β Manage Assignments β Add Assignment β pick users. Same flow as a regular Permission Set.
Required. Human-readable name.
Required. Auto-derived from Label.
- Mute Permission Sets are the only way to subtract permissions from a group. They only mute permissions that the parent permission sets actually grant β you can't mute something the group doesn't have.
- After adding or removing member permission sets, the group's combined permissions recalculate automatically. On large orgs this can take a few minutes β the group's status field shows "Updating" briefly.
- Permission Set Groups have to use the same License as the included permission sets. Mismatched licenses fail at Save with a confusing error β set License on each member set before grouping.
How organizations use Permission Set Group
Built Permission Set Groups for sales, service, and ops personas; new hires get exactly the right access in one assignment.
Field service tech Group bundles 12 Permission Sets; previous per-set assignments were error-prone.
Trust & references
Straight from the source - Salesforce's reference material on Permission Set Group.
- Permission Set GroupsSalesforce Help
- Create a Permission Set GroupSalesforce Help
Test your knowledge
Q1. In which area of Salesforce would you typically find Permission Set Group?
Q2. Can a Salesforce admin configure Permission Set Group without writing code?
Q3. Why is understanding Permission Set Group important for Salesforce admins?
Discussion
Loading discussionβ¦