Configuration and Setup 3 Flashcards
What checks are done when users try to access a Salesforce organization?
Profile Level Login Hours, Profile Level IP Ranges, Company Level Trusted IP Ranges, Activation Code Validation
How does the Security Health Check work?
Security Health Check measures settings values in Password Policies, Network Access Config and Session Settings against baseline values and calculates a percentage score to indicate risk. 100% means all settings meet or exceed the standards.
When is identity verification invoked?
When a users logs in from an unrecognized (based on cookies) browsers or device, and outside the trusted IP range
What can be enabled that helps the administrator spot suspicious login activity?
Login Forensics
What are the different risk categories associated with a Security Health Check in Salesforce?
High, Medium, Low, and informational
What password requirements can an administrator set?
Minimum password length, complexity, password history enforcement, expiration period, minimum password lifetime
Where can sessions security settings be configured at the organization level and the profile level in an org?
On the ‘Session Settings’ page at the organization level and in a user profile at the profile level
Which session setting can be configure to log out inactive users in an org?
Session Timeout
How is the role hierarchy related to record access?
Users will have access to other users’ records if they have a role above the record owner in the role hierarchy and grant access through hierarchies is enabled.
What do organization-wide default settings do?
Determine access to records the users does not own and sets base record access for the org.
How do sharing rules work?
Rules can be created to grant access to groups of users for certain records based on record owner or criteria.
What does filed level-security control?
Controls if a field is visible or read-only at the profile level
What should be considered when changing OWD settings?
If increasing default access, changes will take effect immediately. If decreasing, changes may take significant time depending on data volumes.
What is Manual Sharing?
Manual sharing allows a user to use the ‘Sharing’ button to grant access to a specific record to other users, roles, roles and subordinates, territories, territories and subordinates, and public groups.
What is the purpose of a public group?
It’s a way of grouping users, roles, and territories so that sharing settings and permissions can be granted efficiently.
