Configuration And Setup Flashcards
What should the Org-wide-default setting be if you want all employees to view and edit leads, but only want lead owners to be able to transfer a lead to a new owner?
Public Read-Write
If you want all users to view Accounts and Contracts but don’t want users editing each others records, what should the Org-wide-default setting be?
Public Read Only
What should the org-wide-default access level be if users (and those above them in the role hierarchy) should only see records they own?
Private
A users has Create, Read, Edit and Delete permissions on contracts and the org-wide default is set to private, what can the user see and do with contracts?
Create, View, Edit & Delete records they own
A users has Create, Read, Edit and Delete permissions on contacts and the org-wide default is set to Public Read Only, what can the user see and do with contacts?
Create, View, Edit & Delete records they own
View records they don’t own
If a users profile does not allow them access to Cases and the org-wide default is Public Read, what visibility does the user have on case records?
They cannot view, search or report on any case records in the system
A users has Create, Read, Edit and Delete permissions on accounts and the org-wide default is set to Public Read Write, what can the user see and do with contacts?
Create, View, Edit and Delete all records (owned/owned by others)
A users has Create and Read permissions on leads and the org-wide default is set to Public Read Write, what can the user see and do with leads?
Create and View all records (owned/owned by others)
A users profile grants them create, read, edit and delete permissions on the Opportunity object and the org-wide defaults are set to private, what access options does the role hierarchy offer?
No Access, View, View + Edit
A users profile grants them create and read permissions on Accounts, the org-wide defaults are set to private and the role hierarchy access is set to View + Edit, what accounts can the user edit?
Unable to edit records because the profile does not grant that permission
A users profile is set to create, read, edit and delete on accounts, the org-wide defaults are set to public read only and the role hierarchy access is set to View + Edit, what can the user see and do with accounts?
Create and View all records (owned/owned by others)
Edit records they own and owned by those below him in the hierarchy
A user profile is set to create and read on opportunities, the org-wide default is set to public read only and the role hierarchy access is set to View + Edit, what can the user see and do with opportunities?
Create and View all records (owned/owned by others)
The org-wide defaults and role hierarchy cannot grant him edit access
A users profile is set to create, read, edit and delete on accounts, the org-wide defaults are set to public read/write, what access options does the role hierarchy offer?
Not necessary - user already has access to view and edit all records
A users profile is set to create and read on accounts, the org-wide defaults are set to public read/write, what access options does the role hierarchy offer?
Not necessary - user already has access to create/view all records (unable to edit since the org-wide defaults and the hierarchy don’t grant more permission than the profile
A user has create, read, edit and delete profile permissions on the opportunity object, the org-wide defaults are set to private, the access via role hierarchy is view + edit and the field level security of a specific field is set to visible, can the user edit this field?
Yes because the field is visible and the profile allows him to edit this objects records
A user has create, read, edit and delete profile permissions on the opportunity object, the org-wide defaults are set to private, the access via role hierarchy is view + edit and the field level security of a specific field is set to read only, can the user edit this field?
No the field is read only
A user has create and read profile permissions on the opportunity object, the org-wide defaults are set to private, the access via role hierarchy is view + edit and the field level security of a specific field is set to visible, can the user edit this field?
No the profile does not provide edit permissions on this object and the role hierarchy and field level security cannot grant a user more access then they have through their baseline permissions
You can add up to ___ users at a time to your organization
Ten
___ determines the display formats for date/time, names, addresses and commas/periods in numbers
Locale
___ is used as the foundation for all currency conversion rates when multiple currencies are enabled
Corporate Currency
What is the difference between the View All/Modify All and the View All Data/Modify All Data permissions?
View/Modify All is object specific
View/Modify All Data is for the entire org (all objects)
Where can you view User Licenses?
Company Information
Assign custom home pages to different ___
Apps and App-and-Profile combinations
All users see the default home page unless ___
Their profile is assigned to another home page
Where do you manage time zone settings?
Company Information
Use a permission set group to bundle permission sets together based on ___
Users job functions
Where can you set org-wide defaults for each object?
Sharing Settings
Where do you activate multiple currencies?
Company Information
How can you disable specific permissions in a permission set group?
Muting
How can you show or hide a user (internal or external) from another user in the organization?
User Sharing
How can you allow users with a designated profile to only see records that they own?
Restriction Rules
How can you allow users to see only records owned by the same role as them?
Restriction Rules
What do you use when you want to let user control the set of records that they see, without restricting access to other sets of records?
Scoping Rules
What setting permanently removes all the records from a custom object while keeping the object and its metadata intact for future use.
Custom Object Truncate
Where do you manage business hours?
Company Settings
Where do you specify the fiscal year type for your organization?
Company Settings
Where do you manage exchange rates?
Company Settings
Where do you set the default order and visibility of apps in the App Launcher?
App Menu (Platform tools - User Interface)
What settings allow you to customize the mobile app appearance to match your company’s branding?
Salesforce Branding Settings: Brand color, loading page color, loading page logo
Where can you view field accessibility for a particular field, profile or record type?
Field Accessibility (Settings - Security)
You can download your organizations setup audit trail for the last ___
6 months
Where can you view the status of emails sent through salesforce?
Email Log Files (platform tools)
Where can you monitor the queue of pending automations?
Time-Based Workflow (platform tools)
Where can you track the status of an outbound message?
Outbound messages (platform tools)
Where can you identify and fix potential vulnerabilities in your security settings?
Security Health Check (Security)
What are the two record page views options?
Full View and Grouped View
Allow users to subscribe to reports to be notified whenever certain metrics meet conditions they specify by ___
Enable Report Notifications
Custom report types are not available to users until ___
It is deployed
A custom report type can contain __ object references but only ___ object relationships
60, 4
How can you track how field values have changed over time?
Set up historical trend reporting (historical tracking reports)
Assign page layouts to ___
Profiles and record types
Assign record types to ___
Profiles and permission sets
How can you revoke a permission?
Remove all instances of the permission from the user. Profiles and permission sets can only grant access not deny access.
Default apps, default tabs and default record types can be assigned using __
Profiles only
Settings on a standard profile can be edited but __ cannot
Permissions
___ on a standard profile can be edited but permissions cannot
Settings
Edit multiple profiles at a time without accessing each profile individually using __
Enhanced Profile list view
What option allows you to specify the time period that a user has access to permissions in a permission set?
Assignment Expiration
When permissions granted through profiles and permission sets conflict, the ___ wins
The most permissive Setting
With ___ you can grant or revoke access for a specified set of users through a triggered event, such as a created or updated user record.
User Access Policy
With ___ you can allow access to users only during specified sessions
Session-based permission sets
At what levels can you control field access?
Record type, User or Field Level
What control do Page Layouts have to field access?
Set whether the field is visible, required, editable or read only for a particular record type
Should you use multiple page layouts or field level security to control users access to fields?
Field level security
A field is required in a page layout and the field level security is set to read only. Can this field be edited?
No, the field level security overrides the page layout (read-only is a more restrictive setting)
Organize the fields on detail and edit pages of a record using ___
Page layouts
___ fields appear on edit pages regardless of field level security
Universally requires
Create search layouts for different objects and assign them by ___
Profiles
___ determines which fields a user can use to sort search results and fields users can filter to narrow what is shown on the search results page.
Search Layouts
If you include a field in the search layout but it is hidden for users by field level security, can users see that field in their search results?
No, search layouts don’t override field-level security
A user can create ___ to ensure certain records are always shared within a specified set of users.
An admin can create ___ for everyone in the organization to use to share records.
Personal Group, Public Group
___ can be used to assign users to specific actions in Salesforce Knowledge
Groups
What are two tips to consider when creating public groups?
Create a group when at lest a few users need the same access
Create a group for members who don’t need to frequently move in and out of the group
Set the ___ for leads to private if you want users to only view and edit the leads they own, then use ___ to extend access of leads to particular users or groups
Org-wide defaults, sharing rules
Use ___ to route lead, order, case and custom object records to a group of users
Queues
Queues help groups of users to ___
manage shared workload more effectively
Control access to data categories by ___
Map category groups to user roles
What objects can use Teams?
Accounts, Opportunities and Cases
A ___ is a group of users that work together on an account, opportunity or case.
Team
What levels of record access can be specified by team member?
Read Only or Read/Write
Access granted by hierarchies can only be disabled on ___
Custom Objects
In Account Teams, members also have access to ____ associated with an account
Contacts, Opportunities and Cases
Sharing rules on the contact object don’t apply to ___
Private Contacts
If the org-wide default is set to Public Read/Write/Transfer, who can delete the record?
The record owner
Your Sharing model controls ____ user permissions and object level permissions control ____
Record visibility, what users can do to those records
What are the ways a user can have access to an account
ownership
from an associated child record
org wide defaults
roles
sharing rules
manual sharing
account team/territory
When should the private org-wide default setting be used?
If at least one user should not see a record within the object
If a user has access to a child record of an account, what access are they granted on the account?
Read
What types of users can you set org-wide default access for?
internal, external and guest users
A users ability to view or edit an email template, document, report or dashboard is based on what?
The users access to the folder in which its stored
Do roles above a particular user in the hierarchy have access to records shared to them using a criteria-based sharing rule?
Yes
Who can grant access to a record using manual sharing?
The record owner
Users in a role above the owner in the hierarchy
Users who are granted full access to the record
Some ____ report types might expose data of users whom a user doesn’t have access.
Standard Report Type
What does enabling Manager Groups do?
allows users to share records with their managers and manager subordinates groups
Enable Manual Record Sharing to ___
Allow users to share their own record
Enable Standard Report Visibility in Sharing Settings to ___
let users view reports based on standard report types that may expose data of users to whom they don’t have access, regardless of the organization-wide defaults
Folder access is based in ___
roles, permissions, public groups and license types
Use ___ when you want certain users to only see a specific set of records
Restriction Rules
A company has competing sales teams that can’t see each others activities, even though the activities are on the same account. Use ___ to ensure that sales teams see only activities that belong to team and are relevant to their work
Restriction Rules
A user supports multiple agencies in the org. Each user is assigned to a specific agency. What can you set up to filter the records that the user sees in list views and reports, while still having access to other agencies records if they need them?
Scoping Rules
Which situations would prevent you from deactivating a user?
The user is selected in a custom hierarchy field
The user is the owner of a process
The user is the default owner of leads, cases or workflows
The user is the sole recipient of a workflow email alert
A user does not need a particular tab shown in the apps navigation bar, but they need the apps records to appear in reports, dashboards and related lists. What settings should be configured to achieve this?
Set tab settings on profile to default off
Set tab settings in permission set to Available
The Sales user profile has Create, Read and Edit permissions on the leads object but some sales users need to delete and transfer leads. How can this be achieved?
Create a permission set to grant additional permissions and assign it to the users who need it
A users profile does not grant them access to cases, the org-wide default is set to public read/write. What access does the user have to case records?
They cannot view or edit cases
Opportunity sharing rules give the specified role or group members access to ___
Accounts associated with the opportunity
Sharing Rules automatically grant additional access to _____
Related Records
Contact and case sharing rules provide the specified role or group members access to ___
The associated account
___ expands a users access to fields that are restricted by their ___
Permission Set, Profile
A user has Create, Read, Edit and Delete profile permissions on a custom object, a custom field is set to Read Only. Can the user edit the custom field?
No
Regardless of the users place in the hierarchy, sharing rules make exceptions to org-wide defaults for sets of users in ____
Public groups, roles (role or role & subordinates) and territories
___ makes exceptions to org-wide defaults for sets of users regardless of their place in the hierarchy
Sharing Rules
A user has Read permissions on a particular object, a user below them in the hierarchy has Read and Edit permissions on the same object. What type of access does the user have to the records owned by the user below them in the hierarchy?
Read Only
Regardless of the sharing settings, a user must have the correct ___ to access records shared with them.
object level permissions
To create Sharing Rules, your org-wide defaults must be ___
Private or Public Read Only
A user has a permission giving them read access to the account tab, they are assigned another permission giving them read and edit access to the tab. What access do they have to records on the account tab?
Read and Edit
Users in roles or territories above others in the hierarchies don’t gain access to records shared with them if ____
Grant Access Using Hierarchies is disabled
Record access determines which individual records users can view and edit in each object ___
Their profile already grants them access
___ determine the baseline level of access a user has to all records in each object ___ further restrict access to records the user does not own for each object
object permissions, org-wide defaults
How does a user manually share a record with other users?
Share button on the record
What object permission ignores all sharing rules and settings?
View All and Modify All
Override field-level security or any less-restrictive setting on page layouts by making a custom field ___
universally required
__ can specify which record types and page layouts are visible to a user
Profiles
Use ___ to specify login hours, IP ranges and session settings
Profiles
How can you edit a standard profile
Clone and edit it
What permissions does the standard user profile have for most standard objects
CRED
Protect data at the org level by __
Managing users, password policies and login hours/IP ranges
Set default app and control which tabs are visible and which tabs are available in the app launcher using
Profiles
What permissions options do profiles offer different objects and fields?
CRED - objects
Read, Edit - fields
Create and customize reports and edit read only fields are examples of ___
System permissions
What permissions does the Read Only profile have?
Only view records they have access to
What Object Settings do Permission Sets offer?
tab settings, record type assignments, object and field permiss
How can you extend access to objects and functions to only users who need it without changing profiles or giving permission to everyone with that Profile?
Permission sets
Extends access to records when org-wide defaults don’t already allow users to view and edit records owned by others
Role hierarchies and sharing rules
Create sharing rules based on ____
record ownership – records (of a particular object) owned by a set of users is shared with another set of
users
field criteria – records (of a particular object) matching a certain criteria (regardless of owner) are shared with a set of users
Set field level security to grant/restrict access for a particular field based on users ___
Profile
How can you specify the part a contact plays in a case, account, contract or opportunity?
Contact roles
How can you define what happens when a user views a record with duplicates or starts creating a duplicate record?
Duplicate rules
What can be used to insert, update, delete, and export records?
Data loader