Data Security

Question 1

You can manage record-level access in these four ways

Answer 1

Organization-wide defaults
Role hierarchies
Sharing rules
Manual sharing

Question 2

You can configure access to data at all of the following levels, except:

1 - Organization
2- Objects
3- Page Layouts
4- Records

Answer 2

3- Page Layouts

Question 3

You can secure data at the organization level, using all of these methods, except:
1 - Limit login IP addresses
2- Limit login hours
3 - Set password policies
4- Use hardware token

Answer 3

4- Use hardware token

Question 4

Which of these is not a method for controlling record-level access?

1- Organization-Wide Defaults”,
2- Role Hierarchy
3- Profiles
4- Sharing Rules

Answer 4

3 - Profiles

Question 5

Levels of Data Access

Answer 5

Organization
Objects
Fields
Records

Question 6

The license determines which profiles are available for each user.
1- True
2- False

Answer 6

1- True

Question 7

You can delete a user that was created
1- True
2- False

Answer 7

2- False

“You can’t delete a user, but you can deactivate an account so a user can’t log in. Deactivated users lose access to all records. (That includes records that are shared with them individually and records shared with them as team members.) However, you can still transfer this data to other users and view the names on the Users page.”

Question 8

What are the options available if you can’t immediately deactivate an account (for example, when the user is selected in a custom hierarchy field)

Answer 8

you can freeze their account. That prevents the user from logging in to your organization while you’re working on deactivating them.

Question 9

A user can have

1- Many profiles and many permission sets
2- one profile and one permission set
3- one profile and many permission sets
4- Many profiles and one permission set

Answer 9

3- one profile and many permission sets

Question 10

Profile

Answer 10

Collection of settings and permissions
Apps
Tabs
Field Permissions
Record type??
Objects
Login Time
Admin Permissions
User Permissions

Question 11

You can edit the object permissions on a standard profile

1- True
2- False

Answer 11

2- False

Question 12

You can restrict the access to a Accounts object on a Standard System Administrator profile

1- True
2- False

Answer 12

2- False

“You can’t edit the object permissions on a standard profile.
The System Administrator profile also includes two special permissions:
View All Data
Modify All Data”

Question 13

Field settings can be applied either by

Answer 13

modifying profiles or
permission sets or
from the Field Accessibility menu in Setup

Question 14

By default, the Grant Access Using Hierarchies option is enabled for all objects.

1- True
2- False

Answer 14

1- True

Question 15

You can change Grant Access Using Hierarchies option for Standard objects.

1- True
2- False

Answer 15

2- False

Question 16

Field-level security prevents searching on the values in a field?

True or False?

Answer 16

False.

Field-level security doesn’t prevent searching on the values in a field. To set up your organization to prevent users from searching and retrieving records that match a value in a field hidden by field-level security, contact Salesforce.com Customer Support.

Question 17

Field-level security prevents searching on the values in a field?

True or False?

Answer 17

False.

Field-level security doesn’t prevent searching on the values in a field. To set up your organization to prevent users from searching and retrieving records that match a value in a field hidden by field-level security, contact Salesforce.com Customer Support.

Question 18

You can restrict access below your organization-wide default levels.

True or False?

Answer 18

False

Question 19

You can assign a Profile to an entire team. True or False?

Answer 19

True

Question 20

Standard profiles provide access to newly created custom objects assigned to active users.

True or False?

Answer 20

False. Standard profiles do not become as useful when assigned to active users since they no longer provide access to newly created custom objects.

Question 21

When you delete a sharing rule, the sharing access created by that rule is automatically removed.

True or False?

Answer 21

True

Question 22

If multiple sharing rules give a user different levels of access to a record, what access level will the user ultimately receive?

Answer 22

The user gets the most permissive access level.

Question 23

Name the six standard profiles and what they can do:

Answer 23

1. Standard User
   Create, Read, Edit, Delete on records they can access
2. Read Only
   Only view records that they can access
3. System Administrator
   Super powers! View all data & modify all data
4. Solution Manager
   Standard User + manage published solutions
5. Marketing Manager
   Standard users + import leads
6. Contract Manager
   Standard user + manage contracts

Question 24

What do you have to do to prevent objects from showing in reports and dashboards?

Answer 24

Remove read permission from Profile to completely remove object from Profile.

Question 25

What permission is set in a user's profile?
Choose 3 answers
A. Object Permissions
B. Marketing User
C. Mass Email
D. Active
E. Run Reports

Answer 25

A. Object Permissions
C. Mass Email
E. Run Reports

Question 26

What will happen when a user attempts to log in to Salesforce from an IP address that is outside the login IP range on the user’s profile but within the organization-wide trusted IP range?

A. The user will not be able to log in at all.
B. The user will be able to log in without activating the computer.
C. The user will be able to log in after the computer is activated.
D. The user will be able to log in after answering a security question.

Answer 26

C. The user will be able to log in after the computer is activated.

Question 27

If two objects have a parent-child relationship, how can a user access the child record from the parent record?
A. Related list
B. Lookup field
C. Custom link
D. Child field

Answer 27

A. Related list

Question 28

A user is having trouble logging into Salesforce. The user’s login history shows that this person has attempted log in
multiple times and has been locked out of organization.
How can the system administrator help the user log into Salesforce? Choose 2 answers
A. Click Reset Password on the user’s record detail page.
B. Log in as the user and enter a new password.
C. Click unlock on the user’s record detail page.
D. Send an email to the user containing the user’s password.

Answer 28

A. Click Reset Password on the user’s record detail page.

C. Click unlock on the user’s record detail page.

Question 29

A user profile has login hour restrictions set to Monday through Friday, 8:00 a.m. to 5:00 p.m. The user logged in at
4:30 p.m. on a Tuesday and it is now 5:01 p.m.
Which behavior of the application should the user expect?
A. The user will be able to continue working and start new sessions.
B. The user will be logged out and any unsaved work-in-process will be saved.
C. The user will be able to continue working, but will be unable to start any new sessions.
D. The user will be logged out and any unsaved work-in-process will be lost.

Answer 29

C. The user will be able to continue working, but will be unable to start any new sessions.

https://help.salesforce.com/articleView?id=users_profiles_epui_login_hours_edit.htm&type=0

Question 30

When using sharing rules, what users can records be shared with?
Choose 2 answers
A. Public groups
B. Roles and subordinates
C. Profiles
D. Queues

Answer 30

A. Public groups

B. Roles and subordinates

Question 31

What record level access can be given through sharing
1 Read 
2 Read/Write 
3 Read/Edit/Transfer 
4 Read/Edit/Transfer/Delete

Answer 31

2 Read/Write

3 Read/Edit/Transfer