Admin Intermediate

Question 1

Is the security of your data protected if users get to it through the API?

Answer 1

Yes. Although you can configure the security and sharing model entirely using the user interface, the model works at the API level. That means any permissions you specify apply even if you query or update the data via API calls.

Question 2

organization wide defaults

Answer 2

specify the default level of access users have to each other’s records
you use org-wise sharing settings to lock down your data to the most restrictive level, and then use the other record-level security and sharing tools to selectively give access to other users

Question 3

role hierarchies

Answer 3

give access for users higher in the hierarchy to all records owned by users below them in the hierarchy

Question 4

sharing rules

Answer 4

automatic exceptions to org-wide defaults for particular groups of users so they can get to records that don’t own or can’t normally see

Question 5

4 levels at which you can configure access to data

Answer 5

organization
objects
records
fields

Question 6

4 methods for controlling record level access

Answer 6

org-wide defaults
role hierarchy
sharing rules
manual sharing

Question 7

can you delete a user?

Answer 7

no. but you can deactivate an account so a user can’t log in

deactivated users lose access to all records

Question 8

profile vs. permission sets

Answer 8

profile: determines the objects a user can access and the things they can do with the object record
permission sets: grant additional permissions and access settings to a user