I have all users under team "All". That's the only team I have. When logged into the web client, no user (other than Admin) can see any records owned by another user. Records owned by "Everyone" are visible but that's it. Other than making every record's Owner "Everyone", is there a solution for this?

Thanks!

You've Added all user's to the All Team. And all Accounts, Contacts, Opportunities, etc. are owned by the All team......and you have all user's assigned to say a Sales Role, and the Sales Role has view permissions (Only) for Secured Actions for Accounts, Opps?

So all records have to be Owned by team "All"? In the LAN client, any user can VIEW any record Owned by any other member of the same team. I still want to show that user X owns a reocrd and can change the Owner to someone else, but I would like it so that any member on user X's team can at least also VIEW that record. All the documentation I'm reading confirms my thoughts, so is there something I'm missing?

What are you reading? I've only been doing this since February 1997, so I will defer to those more experienced than I.

Ownership is not to be confused with the Account Manager. Ownership (Account.SeccodeId) controls access to records, queries, group record retrievals that go through the SLX OLE DB Provider......whether that's on the LAN or the WEB.

If you want an indicator that the Account is the User's Account, use the AccountManagerID (or Regionalmanagerid, Divisionalmanagerid) fields to store their USERID value.

If you want to control who can view an Account, Contact, Opportunity, Ticket, et al....then set the Owner (SeccodeID). If a User is not a member of that Team, they will not have access to the Record.These extra user's then would have their Security Profile as a member of that team set to ReadOnly ('SYST00000002').

Has been that way for 15 years next month.

What you just wrote is what I've been reading. 

"If a User is not a member of that Team, they will not have access to the Record"

The Record 1 is Owned by User X. User X is a member of Team A. User Y is also a member of Team A, with the Security Profile Read/Write. Should User Y be able to Read/Write Record 1?

In LAN, the answer is yes. In Web, the answer so far is no. Thoughts?

Ownership works by team or by user. If a record is owned by a user, other users muct have specific rules setup to allow other users to access that user's records. Look at the Teams tab on the User Profile in Administrator. The top tab allows to specify what other user's data the current user is allowed to see.

When it comes to team ownership....if user A and user B are in the "All" team, then the account would have to be owned by "All" for them both to see it. If it was owned by user B then user A would NOT be able to access it on the basis that they are in the same team. User A would have to be configured to be allowed to see User B's records as per mention above.

That is the same for LAN/Web whatever.

That clears it up. It is strange how my LAN client is allowing record access for users of the same team when the record is owned by the team's user. That's a moot point though since I have no intentions of using the LAN client. It just added to my confusion.

Thanks Nick! You and Raul always make my job easier.

You're welcome...