Brainscape's Knowledge GenomeTM

Browse over 1 million classes created by top students, professors, publishers, and experts.


See full index

MB2-703 CRM > Module 10 - Additional Security Options > Flashcards

Module 10 - Additional Security Options Flashcards

1
Q

What are two additional security features available to complement the central model?

A

Field Security and Access Team Templates.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

What does Field Security do?

A

Lets you restrict who can read or edit contents of a custom field, even if user has permissions to view or edit a record. For more precise control.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

What does the Access Team Templates and Access Teams do?

A

Access Teams are created from the Access Team Templates are created to provide a way for users to easily link colleagues to a record to give them permissions. Similar to sharing, but apply permissions that have been centrally defined.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

Does auditing control security or prevent actions that can occur?

A

No, it keeps a record of changes made to the data and the system configuration. Can identify changes made.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

What do field security profiles do?

A

Controls access to custom fields in system entities and custom entities.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

How are field security profiles different from security roles?

A

Security Roles control access at record level. Field Security Profiles controls access to custom fields, in system and custom entities.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

Field security applies to?

A

All methods used to view and update data. Including Reports, Quick Find, Charts, Filtered views, Auditing logs, duplicate Detection, Data Import wizard, etc.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

How can you control access to fields in forms?

A

Use Business Rules or client-side programming to make fields read-only or hidden as required.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

A custom field can be enabled for Field Security where?

A

In the field customization form.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

Once a field is enabled for field security and entity is published, what happens?

A

Field is secure and user no longer has access to the field.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

What does the padlock on the field mean?

A

User cannot edit due to field security, read only, business rule or javascript set.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

A field enabled for field security displays what symbol next to the field in the form editor?

A

Key.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

What are the three levels of permissions you can grant on a secure field?

A

Read, Update, Create

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

What does the Field Security Profile; Read allow a user to do?

A

View data in field.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

What does the Field Security Profile; Update allow a user to do?

A

Can change data in the field.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

What does the Field Security Profile; Create allow a user to do?

A

Can enter data in field when he/she creates a record.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
17
Q

Field permissions for each field in a Field Security Profile applies to who?

A

Every User and Team linked to the Field Security Profile. Permissions operate independently.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
18
Q

Can you add multiple Users and Teams to a Field Security Profile?

A

Yes. Least restrictive combination applies.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
19
Q

If you have a field enabled for field security and users only have create, what is the recommended practice?

A

Making that same field Business Required so that users won’t incorrectly create a record without completing a value for the field.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
20
Q

What properties does the System Administrator Field Security Profile possess?

A

Every secured field, permission is set to yes. Profile can’t be deleted. Automatically populated with user/team with System Administrator Security Role. User/Team added cannot be removed. Others can be added. Does not appear in list of Field Security Profiles in Solution.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
21
Q

How to create a Field Security Profile?

A

Solution > field security profiles > New > Name, Description > Save

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
22
Q

How to add Teams or Users as members to a Field Security Profile?

A

Teams/Users in nav pane > Add > Select to add Teams/Users to Selected Records > Add

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
23
Q

How to configure permissions for the field that have field security enabled?

A

Field Permissions > Select one or more fields > Edit > Yes or No for three available (allow read, allow update, allow create) > Ok > save and close

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
24
Q

If a field is enabled for field security it is secure by default meaning…

A

If you add Users / Teams and all field permissions are NO is the same as not adding the Users or Teams

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
25
Q

What are the levels where Security is applied in CRM?

A

Entity - Security Roles, Record - Sharng, Field - Field Security Profiles

26
Q

Privileges granted through Security Roles or Sharing cannot what?

A

Cannot increase the access a user has to a field that is enabled for field security.

27
Q

Sharing is best thought of as what?

A

As extending scope of user’s access, not type of access. It extends privileges that user has to own records to apply to records that user does not own. Does not grant privileges that user does not have at Security Role at User level or above.

28
Q

Privileges granted through a Field Security Profile cannot what?

A

Cannot increase access user has to a field, or on a record to which the user does not have access.

29
Q

Access Team Templates resolve which issues with sharing?

A

If sharing record, you cannot determine who has access without opening dialog box for each record to check. You cannot create queries with Advanced find. You have to configure permissions every time he or she shares a record.

30
Q

How do Access Team Templates work?

A

Users can add colleagues to a record to receive a set of permissions that system customizer has configured in advance. List of who has access is easily visible. Based on usual Team entity.

31
Q

How to configure Access Team Templates?

A

Enable entity for Access Teams > Publish change > Create Access Team Template that defines access rights > on form for entity, add sub grid to add and display users who are members of Access Team

32
Q

Access rights in Access Team Templates are aligned to what?

A

The actions that are configured as privileges in a Security Role and permissions given by sharing a record (read, write, delete design).

33
Q

Can you create more than one Access Team Template for the same entity?

A

Yes, you can give read access rights to one Access Team and write access to another Access Team.

34
Q

Why don’t you have to create Teams to use with the Access Team Templates?

A

Because when the first user is added to a record through the sub-grid a Team is created by the system.

35
Q

Team has specific properties, including what?

A

Team Name, Team Type, Is System Managed

36
Q

What is the Team Name for an Access Team?

A

A concatenation of the GUID of the record + GUID of Access Team Template associated with subgrid where User is added.

37
Q

What is the Team Type for an Access Team?

A

Access (instead of Owner).

38
Q

Teams created by the system are not displayed in default views for Teams, why?

A

Because views use Team Type or Is System Managed properties to exclude Teams from view filters.

39
Q

When you try to add a User to an Access Team for a record what three rules are enforced by the system?

A

User who adds new AT member must have; share privileges to the record/must have for the record all the access rights defined in the Access Team Template. User who is added to the AT must have at least User level access to privileges that AT template has.

40
Q

As a general rule of thumb concerning security, a user cannot…?

A

User cannot grant privileges they do not have.

41
Q

Access Teams use sharing to grant permissions to records, which means?

A

Users must have share privileges to the records that have Access Teams that user wants to modify.

42
Q

Auditing shows what?

A

Who made changes to data, settings, security configuration, customizations.

43
Q

Which three levels can auditing be enabled at?

A

Organization, Entity, Field

44
Q

How to enable auditing on an organization level?

A

Settings > Administration > System Settings > Auditing

45
Q

How to enable auditing on entity level?

A

Auditing property on entity.

46
Q

How to enable auditing on field level?

A

Auditing property on field.

47
Q

Organization level auditing shows what?

A

System level changes like Security Roles being assigned.

48
Q

Entity level auditing shows what?

A

Deleting attribute field, disabling auditing for entitiy, etc.

49
Q

Field level auditing shows whats?

A

Records changes to data values in fields, this only occurs of Org level auditing is enabled.

50
Q

In a 1:N relationship, if auditing is enabled on the lookup field, what happens?

A

You can audit changes to record relationships. Parent record does not show changes when related records are associated to the parent record, because there is no change in data on primary record.

51
Q

Audit entries record what?

A

Type of event that occurred, user who triggered event, and time and date of event occurrence.

52
Q

How to view the audited events for a single record?

A

Audit History, for a single record as accessed through navigation bar from the record form.

53
Q

How to view audited events for Organization and Entity?

A

Audit Summary View, shows Organization and entity level events and summary of data changes made to records.

54
Q

Audit data can be viewed by which users?

A

Users who have miscellaneous privileges for View Audit History or View Audit summary, granted on Core Records tab of Security Role.

55
Q

Default security roles at “manager” level and above have what enabled?

A

View Audit History.

56
Q

Sys Admin role is the only default role to have what enabled?

A

View Audit Summary enabled

57
Q

How is Audit data divided?

A

Audit logs for each quarter of calendar year. Can be viewed in Settings > Auditing > Audit Log Management.

58
Q

The Account Number field is added to the Account form and the form is in use. You enable the Account number field for field security, publish the Account entity and assign x user to a Field Security Profile that has only the Create field permission set to Yes. What happens?

A

X User can view field on Account form and enter a value only when she creates a new Account record.

59
Q

What three steps must you follow to configure Access Teams for a custom entity that is named Project?

A

Enable Project entity for Access Teams, create an Access Team Template for Project entity, add sub user grid of user records in Project Form

60
Q

You enable auditing in the System Settings and the Account entity, and do not change any settings for any fields. What is an action that is performed that would not be audited?

A

A user reads an Account record owned by another user.

MB2-703 CRM (11 decks)

Brainscape helps you reach your goals faster, through stronger study habits.
© 2024 Bold Learning Solutions. Terms and Conditions