org-edition-and-feature-licensing
Use when evaluating which Salesforce features are available in a given org edition, determining whether a planned solution requires an add-on license, or investigating why a feature is unavailable in the current org. Triggers: 'feature not available in our edition', 'does Enterprise include Einstein', 'Unlimited vs Performance edition differences', 'we need Flow Orchestration but do not have it', 'what license do we need for Agentforce'. NOT for user license seat count planning (use capacity-planning), NOT for AppExchange package licensing (use appexchange-management).
Best use case
org-edition-and-feature-licensing is best used when you need a repeatable AI agent workflow instead of a one-off prompt.
Use when evaluating which Salesforce features are available in a given org edition, determining whether a planned solution requires an add-on license, or investigating why a feature is unavailable in the current org. Triggers: 'feature not available in our edition', 'does Enterprise include Einstein', 'Unlimited vs Performance edition differences', 'we need Flow Orchestration but do not have it', 'what license do we need for Agentforce'. NOT for user license seat count planning (use capacity-planning), NOT for AppExchange package licensing (use appexchange-management).
Teams using org-edition-and-feature-licensing should expect a more consistent output, faster repeated execution, less prompt rewriting.
When to use this skill
- You want a reusable workflow that can be run more than once with consistent structure.
When not to use this skill
- You only need a quick one-off answer and do not need a reusable workflow.
- You cannot install or maintain the underlying files, dependencies, or repository context.
Installation
Claude Code / Cursor / Codex
Manual Installation
- Download SKILL.md from GitHub
- Place it in
.claude/skills/org-edition-and-feature-licensing/SKILL.mdinside your project - Restart your AI agent — it will auto-discover the skill
How org-edition-and-feature-licensing Compares
| Feature / Agent | org-edition-and-feature-licensing | Standard Approach |
|---|---|---|
| Platform Support | Not specified | Limited / Varies |
| Context Awareness | High | Baseline |
| Installation Complexity | Unknown | N/A |
Frequently Asked Questions
What does this skill do?
Use when evaluating which Salesforce features are available in a given org edition, determining whether a planned solution requires an add-on license, or investigating why a feature is unavailable in the current org. Triggers: 'feature not available in our edition', 'does Enterprise include Einstein', 'Unlimited vs Performance edition differences', 'we need Flow Orchestration but do not have it', 'what license do we need for Agentforce'. NOT for user license seat count planning (use capacity-planning), NOT for AppExchange package licensing (use appexchange-management).
Where can I find the source code?
You can find the source code on GitHub using the link provided at the top of the page.
SKILL.md Source
# Org Edition and Feature Licensing Use this skill when a solution design depends on features that may not be available in the org's current Salesforce edition or license tier — or when a feature is missing in production and the root cause may be edition or licensing rather than configuration. --- ## Before Starting Gather this context before advising on edition or licensing: - Confirm the current org edition: Setup > Company Information > Salesforce Edition. - Check the org's add-on licenses: Setup > Company Information > Feature Licenses section. - Know the specific feature the solution requires — feature names can be ambiguous between marketing names and platform feature names. - Check whether the missing feature has been enabled in Setup (some features are available in the edition but not enabled by default). --- ## Core Concepts ### Salesforce Edition Hierarchy Salesforce Sales Cloud, Service Cloud, and Platform editions follow a standard hierarchy: | Edition | Key Characteristics | |---|---| | **Essentials** | Limited to 10 users; basic CRM only; no custom profiles, no Apex, no API access | | **Professional** | Full CRM; no Apex triggers, no custom Flows (declarative automation is limited), no API by default (available as add-on), 2 sandboxes not included | | **Enterprise** | Full platform capability; Apex, Visualforce, unlimited custom Flows, API, 1 Full sandbox + unlimited partial sandboxes; no free Agentforce/Einstein | | **Unlimited** | Enterprise features + 24/7 support, additional storage, more sandboxes (multiple Full sandboxes included), some AI/Einstein features at no extra cost | | **Performance** | Unlimited features + additional Einstein Activity Capture, CRM Analytics, Salesforce Anywhere; optimized for high-growth orgs | | **Developer** | Full Enterprise-equivalent feature set for development/testing; not licensed for production use | ### Feature Licensing (Add-Ons) Many features are not included in any base edition and require separate add-on licenses: | Feature | Availability Without Add-On | Add-On Required | |---|---|---| | Agentforce (AI Agents) | Not included in any base edition | Agentforce add-on (per conversation or flat fee) | | Einstein Copilot (Einstein for Sales/Service) | Unlimited/Performance include some Einstein features | Einstein 1 add-on for full Copilot | | Flow Orchestration | Enterprise+ | Included in Enterprise+ (no add-on required) | | Shield (Platform Encryption + Event Monitoring) | Not included | Salesforce Shield add-on | | Salesforce CRM Analytics (Tableau CRM) | Not included in Enterprise; partial in Unlimited | CRM Analytics add-on | | Salesforce Functions | Not included | Functions add-on (currently in limited availability) | | Large Data Volumes sandbox (Full Sandbox) | 1 included in Enterprise | Additional Full sandboxes are add-ons | | API Access | Included in Enterprise+ | Add-on required for Professional | | Apex Triggers | Not available in Essentials/Professional | Requires Enterprise+ | ### Feature Availability vs. Feature Enablement Some features are **available** in an edition but must be **enabled** before they can be used: | Feature | Enablement requirement | |---|---| | Flow Orchestration | Available in Enterprise+ but must be enabled in Setup > Process Automation Settings. | | Einstein Activity Capture | Available in certain editions but must be enabled per user. | | Territory Management | Available in Enterprise+ but requires Setup > Territory Management > Enable. | | High Velocity Sales / Sales Engagement | Available as a feature but requires explicit enablement. | When a feature is "missing," always check whether it is an edition/licensing issue (feature not available) or an enablement issue (feature available but not turned on) before concluding that an upgrade is needed. ### Sandbox Types and Edition Inclusion | Sandbox Type | Professional | Enterprise | Unlimited | |---|---|---|---| | Developer Sandbox | 10 included | 25 included | Unlimited | | Developer Pro Sandbox | Not included | 1 included | Additional available | | Partial Copy Sandbox | Not included | Included | Included | | Full Sandbox | Not included | 1 included | Multiple included | --- ## Common Patterns ### Diagnosing "Feature Not Available" in a Production Org **When to use:** A user or admin reports that a feature they expected is missing or greyed out in Setup. **Steps:** 1. Go to Setup > Company Information > confirm Salesforce Edition. 2. Check the feature against the edition table above to determine if it is included. 3. If included in the edition, check Setup for the feature's enable toggle — many features require an explicit enable step. 4. If the feature requires an add-on, check Setup > Company Information > Feature Licenses to see if the license is allocated. 5. If the add-on is present but not assigned to the user, check User record > Permission Set License Assignments. ### Evaluating an Edition Upgrade **When to use:** A planned solution requires features that exceed the current edition. **Steps:** 1. List all features the solution requires. 2. Map each feature to its minimum edition or add-on requirement. 3. Determine whether the gap can be addressed by add-ons without upgrading the edition (cheaper and less disruptive), or whether a full edition upgrade is needed. 4. For Professional → Enterprise upgrades: consider all dependent changes — profile/permission set structure, sandbox availability, API access, Apex trigger enablement. 5. Account for sandbox costs in the upgrade plan — Full sandboxes are often the deciding factor for Enterprise → Unlimited upgrades. --- ## Decision Guidance | Scenario | Recommendation | |---|---| | Feature is available in current edition but not showing | Check Setup for the enable toggle before concluding a license issue | | Feature requires Enterprise, org is on Professional | Enterprise upgrade required — add-ons alone cannot add Apex to Professional | | Need Agentforce in an Enterprise org | Add Agentforce license add-on — does not require edition upgrade | | Need additional Full sandboxes beyond the included one | Purchase additional Full Sandbox add-ons — no edition upgrade needed | | Need Salesforce Shield for encryption | Shield add-on required — available on Enterprise+ | | Professional org needs API access | API Access add-on available for Professional without edition upgrade | --- ## Recommended Workflow 1. **Confirm the org edition** — Setup > Company Information > Salesforce Edition. 2. **List the required features** from the solution design — be specific about the platform feature name, not just the marketing name. 3. **Check each feature against the edition matrix** — determine if it is included, requires enablement, or requires an add-on. 4. **Check Feature Licenses in Setup** — confirm whether add-on licenses are already provisioned. 5. **Check enablement for included features** — if a feature is in the edition but missing, find its Setup enable toggle. 6. **Determine gap** — if add-ons can close the gap, recommend add-ons. If the edition is the blocker (e.g., Apex on Professional), recommend an edition upgrade. 7. **Document the licensing requirements** for the solution in the technical design so procurement and renewal teams can plan accordingly. --- ## Review Checklist - [ ] Current org edition confirmed from Setup > Company Information - [ ] All required features mapped to their edition or add-on requirement - [ ] Feature Licenses section checked for existing add-ons - [ ] Enable toggles checked for features that are included but not active - [ ] Edition upgrade impact assessed (sandbox counts, profile limits, Apex availability) - [ ] Licensing requirements documented in the solution design --- ## Salesforce-Specific Gotchas 1. **Marketing names and platform features are not 1:1** — "Einstein Copilot," "Agentforce," and "Einstein for Sales" are related but distinct platform components with different licensing models. Always verify the specific platform feature name against the current edition guide. 2. **Feature availability changes with each release** — Features that were add-ons in one release may be included in a base edition in a subsequent release (e.g., some Flow features moved from Enterprise-only to Professional). Always check the current edition comparison page for the active release, not a cached version. 3. **Developer Edition orgs have Enterprise-equivalent features but cannot run production workloads** — Developer Edition is not a free tier of production capability. Solutions designed on Developer Edition may reference features not available in the customer's actual edition. 4. **Permission Set Licenses (PSLs) grant feature access per user within an edition** — Some add-on features are provisioned as PSLs and must be explicitly assigned to users, even when the org-level license is active. A feature "not working" for one user but working for another is often a PSL assignment issue. --- ## Output Artifacts | Artifact | Description | |---|---| | Feature availability matrix | Table mapping required features to edition requirement and current gap | | Licensing recommendation | List of add-ons or edition upgrade required to support the solution | | Enablement checklist | Setup steps to enable available-but-inactive features in the current edition | --- ## Related Skills - limits-and-scalability-planning — edition-level limits (sandbox count, API request limits, storage) - security-architecture-review — Shield, encryption, and security feature requirements - agentforce-observability — Agentforce-specific licensing and feature availability
Related Skills
feature-flag-custom-metadata
Implement environment-safe feature flags using Custom Metadata Types for Apex, LWC, and Flow. NOT for user-level entitlements or permission sets.
experience-cloud-licensing-model
Use this skill to select the correct Experience Cloud external user license type for a portal or community. Trigger keywords: Customer Community vs Partner Community, login-based vs member-based license, External Apps license, external user license selection, Experience Cloud license tiers. NOT for internal Salesforce employee licensing. NOT for Marketing Cloud licensing. NOT for ISV or OEM licensing.
feature-flags-and-kill-switches
Use when implementing runtime feature toggles, emergency kill switches, or gradual rollout controls in Apex using Custom Metadata Types, Custom Permissions, or Hierarchical Custom Settings. NOT for Custom Metadata Type fundamentals — see custom-metadata-types skill for CMDT basics.
xss-and-injection-prevention
Use when writing or reviewing Visualforce pages, Apex controllers, or LWC components that output user-supplied data, build dynamic queries, or construct HTTP responses. Triggers: 'XSS in Visualforce', 'SOQL injection vulnerability', 'how to encode output in Apex', 'JSENCODE Visualforce', 'open redirect prevention'. NOT for Apex CRUD/FLS enforcement (use soql-security or apex-crud-and-fls), NOT for Shield encryption (use shield-encryption-key-management), NOT for AppExchange security review process (use secure-coding-review-checklist).
visualforce-security-and-modernization
Use when hardening or modernizing legacy Visualforce pages — covers the platform CSRF token model and when disabling it is a security regression, view state encryption guarantees and the 170 KB ceiling, FLS/CRUD enforcement gaps on `<apex:outputField>` and on getters that return sObjects, `<apex:includeScript>` interaction with the org Content Security Policy, hosting LWC inside a VF page via `lightning:container` / `lightning-out`, and the retire-vs-harden-vs-leave-alone decision for an inventory of legacy pages. Triggers: 'should I rewrite this Visualforce page in LWC', 'CSRF protection disabled on Visualforce page is that safe', 'community user sees a field they should not on a Visualforce page', 'view state encryption is that enough for sensitive data', 'how do I host an LWC inside a Visualforce page', 'apex:dynamicComponent and apex:actionFunction safe to keep'. NOT for greenfield Visualforce architecture (use apex/visualforce-fundamentals — controller types, view state pattern selection, PDF rendering); NOT for Visualforce email template authoring (use apex/visualforce-email-templates if/when that skill is authored); NOT for general Apex security review across triggers and async (use apex/soql-security and security/secure-coding-review-checklist).
transaction-security-policies
Transaction Security policy creation and configuration: condition builder, enhanced policies, enforcement actions (block, MFA, notification, end session), real-time monitoring mode, and policy troubleshooting. NOT for Event Monitoring log analysis or Shield Event Monitoring setup (use event-monitoring). NOT for Apex testing or debug-log analysis.
sso-saml-troubleshooting
Diagnosing broken SAML SSO into Salesforce — IdP-initiated vs SP-initiated flows, signing-certificate validity / expiry, NameID format mismatches, RelayState handling, audience / entityId / issuer mismatches, clock skew, the SAML Assertion Validator in Setup, the Login History debug log, and the My Domain prerequisite for SSO. Covers the standard diagnostic loop: read the SAML response, identify which check failed, fix at the IdP or SP. NOT for OAuth / OpenID Connect SSO (see security/oauth-openid-troubleshooting), NOT for setting up SSO from scratch (see security/sso-saml-setup).
shield-kms-byok-setup
Configure Shield Platform Encryption with customer-supplied (BYOK) or customer-held (Cache-Only Key Service) tenant secrets, rotate them, and recover. NOT for Classic Encryption or field masking.
shield-event-log-retention-strategy
Use when designing Salesforce Shield Event Monitoring retention, SIEM routing, and storage-tier strategy — which event types to keep, for how long, where, and how to answer audit queries across hot/warm/cold tiers. Triggers: 'shield event log retention', 'route event monitoring to splunk', 'how long to keep login history', 'siem salesforce integration', 'event monitoring storage tier'. NOT for enabling Shield (see salesforce-shield-deployment).
session-management-and-timeout
Use this skill when configuring session timeout values, concurrent session limits, session IP locking, or logout behavior in Salesforce. Covers org-wide session settings, profile-level overrides, Connected App session policies, and Metadata API SecuritySettings deployment. NOT for OAuth token refresh flows, login IP ranges, or MFA/identity-provider configuration.
session-high-assurance-policies
Enforce step-up authentication for sensitive pages/objects using High Assurance session level and login flow policies. NOT for initial MFA enrollment UX.
service-account-credential-rotation
Use when designing credential rotation for integration users, connected apps, named credentials, and OAuth client secrets in Salesforce. Covers rotation cadence, zero-downtime handover, secret storage, and detection of stale credentials. Triggers: 'rotate integration user password', 'connected app secret rotation', 'named credential rotation', 'stale service account', 'zero downtime secret rotation'. NOT for end-user password policies.