Interview questions: Data Security Flashcards

1
Q
  1. What is the profile?
A

A profile in Salesforce is a group/collection of settings and permissions that define what
a user can do in Salesforce. Profile is the most restricted privilege granted to a user.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q
  1. How many profiles can be assigned to one user?
A

A profile can be assigned to one user.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q
  1. What is permission set?
A

Permission sets in salesforce.com are the combination of different settings and
permission sets given to user to access records and files. Permission sets extend user
privileges by granting additional permissions to the user

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q
  1. Difference between profiles and permission sets?
A

Profiles : In Object level Security, Profiles are assigned to the user by system
administrator. A profile can be assigned to many users where as a user can have only
one Profile.

Permission Sets : In this Permission sets we define the access level of the user.
Generally we determine what a user can do in the applications. These are used to grant
additional permission to a user.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q
  1. Tell me about Field-Level Security?
A

In field level security, we control the user what to see, edit, delete of a particular field in
the object.

Field Level Security can be controlled by Profiles and Permission sets.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q
  1. What are Login Hours and Login IP Ranges?
A

Login hours are set in an organization to restrict the user‘s who tries to login before or
after login hours.

IP ranges are used to restrict any login attempt is done from unknown IP addresses.
Usually organizations maintain login IP ranges.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q
  1. What is a User Record?
A

User records consist key information about the user.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q
  1. What is a Record Owner?
A

The User or Queue who controls and have the right to access a record.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q
  1. What are Organization Wide Defaults?
A

Organization wide Defaults define the baseline level of access to data records for all
users in an Organization. Organization wide Defaults(OWD) can be defined for
Standard Objects and Custom Objects.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q
  1. How many ways can we share a record?
A

Records can be shared in 5 types they are
* Role Hierarchy.
* Organization Wide Defaults.
* Manual Sharing.
* Criteria Based Sharing Rules.
* Apex Sharing.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q
  1. Can we use sharing rules to restrict data access?
A

No, sharing rules cannot restrict data access.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q
  1. Can you describe the differences between a Role and a Profile?
A

Roles & Profiles are two fundamental concepts of the Salesforce platform. They control
what users can see and do on the platform.

Profiles control what a user can do on the platform, for example, they control what kind
of access rights a user has to a certain object, such as create, read, edit, or delete.
They also control individual permissions such as ―Export Reportsǁ, ―Create
Dashboard Foldersǁ, or ―Modify All Dataǁ.

Roles, on the other hand, are used to control what users can see. They are designed to
open up access through a hierarchy so that more senior members of the organisation
can see more records. For example, someone at the bottom of the hierarchy, like an
Account Executive, might be only able to see their own accounts. But the VP Sales US,
would be able to see all accounts owned by individuals below them.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

13- What is an Audit trail?

A

If an organization has various Salesforce Administrators, the Audit trail lets you track all
the recent changes made by other admins. It can store up to 6 months of data.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q
  1. Is it possible to create sharing rules for detail object?
A

No, we can‘t create sharing rules for details objects because they don‘t have owner field

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q
  1. What is “View all” and “Modify all” permission?
A

View all and Modify all permissions are usually given to system administrator. When you
grant ―View Allǁ or ―Modify Allǁ for an object on a profile or permission set, you grant
any associated users access to all records of that object regardless of the sharing and
security settings.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q
  1. What is Manual sharing?
A

In Salesforce Manual Sharing, records are shared individually with other users by using
the share button on the record. Sometimes it is not possible to define a consistent group of users who need access to a particular record that is where manual sharing comes in.

17
Q
  1. Who can share manually?
A

Only these 4 users can share the record:
* Record Owner
* A user in a role above the owner in the role hierarchy.
* Users granted ―Full Accessǁ to record.
* Administrator

18
Q
  1. How to delete user from Salesforce?
A

In Salesforce you are never able to delete a user. Instead, you are able to deactivate
them. The benefit is deactivating users is that they aren‘t using a license, but you get to
have all their historical data.

19
Q
  1. How can you change the setting “Grant Access Using Hierarchies” for Standard
    Objects?
A

It is not possible, by default Grant Access Using Hierarchies options are enabled for
standard objects and they cannot be changed. For custom objects we can change
“Grant Access Using Hierarchies “settings.

20
Q
  1. What are standard profiles?
A
  • Read Only
  • Standard User
  • Marketing User
  • Contract Manager
  • System Administrator