Standard profiles are essentially used as templates that remain mostly the same throughout all Salesforce orgs. As you can make only a very limited number of changes to a standard profile, the solution is to create a custom profile corresponding to the functionality needed by a set of users.
In this scenario, I would create a profile called “Inside Sales”, and enter in the description “standard profile w/o export report permission” along with details about the profile’s usage.
This serves two purposes:
- It removes the restrictions of a standard profile.
- It establishes a baseline set of permissions for specific users. For instance, if both the inside and outside sales teams use the same profile, then if I need to change permissions for only one team, I’ve got a lot more work to do. Where you draw the lines between profiles, permission sets, and the security model as a whole is an art, not science. Rely on those that know your business well, ask a lot of questions, and understand how Salesforce works.
- Setup –> Manage Users –> Profiles
- New Profile (Button)
- Select Existing Profile “Standard User”, Profile Name “Inside Sales”, Save
- Edit Profile, Uncheck “Export Reports” (you may want to search the page), Save
- Setup –> Manage Users –> Users
- Edit James Smith, Select Profile “Inside Sales”, Save
- Click Login next to James Smith, Select Reports Tab, Run any Report, Verify that “Export Details” is not present