Salesforce DEV401 - Security Flashcards
Salesforce Dev 401 Certification
For a Contact object, all users should be able to see all the fields except User Y who should not be able to see Mobile Number field. This functionality will be achieved by A. Organization Wide Default B. Profile C. Field Level Security D. Page Layout E. Roles
C. Field Level Security
A user has Read only Access to the account, will he be able to attach a file in the Attachment related list on a record? A. Yes B. No C. Yes, if the file is less than 5 MB D. Yes, if file is more than 5 MB
B. No
What CANNOT be done using profiles? A. Control the tab access B. Set the CRUD permissions C. Give access to records by modifying the record types D. Control password settings
C. Give access to records by modifying the record types
Does Salesforce.com recommend setting the sharing to private for the objects on which you grant “Read” access for your Site?
A. True
B. False
A. True
Which Feature in Salesforce.com allows managers to see the data of their subordinates? A. Organization Wide Defaults B. Role Hierarchy C. Manual Sharing D. Apex Sharing E. Profiles
B. Role Hierarchy
What is the difference between “View All Data” and “View All” permission on Profile?
A. “View All Data” overrides sharing settings for all objects in the organization, while “View All” overrides sharing settings for the named object.
B. The “View All Data” overrides sharing settings for the named object, while “View All” overrides sharing settings for all objects in the organization.
C. Both have the same functionality
D. View All Permission allows the user to view the data, whereas View All allows the user to view the Setup
A. “View All Data” overrides sharing settings for all objects in the organization, while “View All” overrides sharing settings for the named object.
Mini page layouts inherit record type and profile associations, related lists, fields, and field access settings from their associated page layout.
A. True
B. False
A. True
You can grant “Read” and “Create” permissions on all standard objects in Sites except A. Products B. Price books C. Ideas D. All of the above
D. All of the above
Can field-level access settings inherited from the associated page layout be changed on the Mini Page layout?
A. Yes
B. No
C. Depends on the Profile Permissions
B. No
Sharing Rules are used to
A. Restrict the Access to users in Public Groups
B. Extend the Access to users in Public Groups
C. Restrict the Access to other Developers
D. Extend the Access to other Developers
B. Extend the Access to users in Public Groups
If a field is required in the page layout and read-only in the field-level security setting, what will happen?
A. The page layout overrides the field-level security and the field will be required only for the user
B. The field-level security overrides the page layout and the field will be read only for the user
C. This case will never arise and if tried an error will be thrown
D. Both will be over ridden by the Profile level permissions
B. The field-level security overrides the page layout and the field will be read only for the user
Divisions do not restrict users’ access to data and are not meant for security purposes.
A. True
B. False
A. True
It is possible to share a custom object record manually.
A. True
B. False
B. False
What minimum level of access is required on account to add a task to it? A. Read B. Edit C. Delete D. Any of the above
B. Edit
Which Custom Object relationship has no effect on security of the related object? A. Master-Detail relationship B. Lookup relationship C. Open relationship D. None of the above
B. Lookup relationship
What is the use of marketing user profile?
A. User can create campaigns
B. User can import Leads
C. User can work in marketing Application
D. None of the above
A. User can create campaigns
Under what circumstances would the sharing button to be enabled on a detail view for a record.
A. A developer has added the button to the page layout
B. When record sharing is enabled in the user profile
C. When record sharing is set to public read only or private for the object
D. When record sharing is set to public read/write for the object
C. When record sharing is set to public read only or private for the object
Fields hidden using Field Level Security are subject to Data Validation Rules.
A. True
B. False
A. True
Based solely on the role hierarchy a manager can do all of the following EXCEPT:
A. View, edit, delete, and transfer his/her and his/her subordinate’s records
B. Extend sharing on both his/her and his/her subordinate’s records
C. View all folders his/her subordinate has access to, i.e., Reports, Documents, and Email Templates
D. View records his subordinate does not own but can view
C. View all folders his/her subordinate has access to, i.e., Reports, Documents, and Email Templates
If a profile does not have access to an application, that profile will also not have access to the tabs and objects of that application.
A. True
B. False
B. False
Which of the following does a Profile control?
A. Username and Password
B. Role level access
C. Read, Create, Edit, and Delete permissions
D. Sharing rules
C. Read, Create, Edit, and Delete permissions
How many criteria-based sharing rules per object can be created? (Spring'11 Release) A. 10 B. 50 C. 100 D. 200 E. No Limit
B. 50
A criteria-based sharing rule that specifies “Employee” in a text field won’t share records with “employee” in the field.
A. True
B. False
A. True
Records are in “New” status when created, and are only visible to a select set of users. Once in “Approved” status, the records are visible to all users. How can this be implemented?
A. Set the object level sharing to Private, add a workflow rule to update the sharing rule when status changes.
B. Set the object level sharing to Public Read-Only, restrict the sharing when status is ‘New’.
C. Set the object level sharing to Private, create a public group with appropriate users, and modify manual sharing to public group based on status
D. Create role hierarchy, modify the user profiles when status changes
C. Set the object level sharing to Private, create a public group with appropriate users, and modify manual sharing to public group based on status
What should be done in Field Level security settings to make a field Read-only for all profiles? A. Enable Visible and Enable Read-Only B. Disable Visible but Enable Read-Only C. Enable Visible but Disable Read-Only D. Disable Visible and Disable Read-Only
A. Enable Visible and Enable Read-Only
Child records in a lookup relationship do not inherit the security of their parents
A. True
B. False
A. True
Field level security overrides any less-restrictive field access settings in the page layouts and search layouts
A. True
B. False
A. True
A developer needs to make a field that is normally accessible by most users, inaccessible on the report wizard for specific users. What the best method to fulfill that requirement?
A. Field level security
B. Remove the field from the page layout
C. Remove the field from the user profile
D. Change my display under personal settings
A. Field level security
1. Universal Recruiters wants to make access to records in such a way that all managers should be able to access records that are accessible to their team members. Which feature of Force.com's security should be used to implement this requirement. A. Object level access to profiles B. Field level access to profiles C. Organization wide defaults D. Role hierarchy E. Sharing rules F. Manual sharing
D. Role hierarchy
An organization wishes to have everyone view/edit records on an object, except for a single person x who should only have read-only access to the object. What is the best way to implement the requirement?
A. Modify the sharing access for the object to public read/write and remove user x from the role hierarchy
B. Modify the sharing access for the object to private and remove user x from the role hierarchy
C. Modify the sharing access for the object to public read only, create a public group with everyone except user x; create a sharing rule and define read/write access to the public group.
D. Modify the page layout to be read-only.
C. Modify the sharing access for the object to public read only, create a public group with everyone except user x; create a sharing rule and define read/write access to the public group.
How does Salesforce enforce data access using Role Hierarchy?
A. Users are given access to the records owned by the users who are below them in the role hierarchy
B. Users are given access to the records owned by the users who share the same role on the role hierarchy.
C. Users are given access to the records accessible by the users who are below the role hierarchy.
D. Users are given access to the records accessible by the users who are above them in the role hierarchy.
A. Users are given access to the records owned by the users who are below them in the role hierarchy
Profiles have the following permissions to be selected (select all that apply) A. View All Data B. Delete All Data C. Modify All Data D. Customize Application E. Data Loader only user F. Password Never Expires G. Load Data through Data Loader
A. View All Data
C. Modify All Data
F. Password Never Expires
Custom objects in Sites have which kind of permission? A. Read Only B. Read and Create C. Read, Create and Edit D. Read, Create, Edit and Delete
D. Read, Create, Edit and Delete
What is the purpose of checking the Marketing User checkbox at the User level?
A. User can create Campaigns
B. User can import Leads
C. User can work in the Marketing Application
D. User can be assigned Marketing Manager profile
E. User can work on Campaign object
F. None of the above
B. User can import Leads
\_\_\_\_\_\_ allow you to offer different business processes, picklist values, and page layouts to different users based on their profiles. A. Record Types B. Custom Setting C. Junction objects D. Workflow Rules E. Visualflow
A. Record Types
Permissions on Standard profiles cannot be customized
A. True
B. False
A. True
Under what circumstances would the sharing button to be enabled on a detail view for a record.
A. A developer has added the button to the page layout
B. When record sharing is enabled in the user profile
C. When record sharing is set to public read only or private for the object
D. When record sharing is set to public read/write for the object
C. When record sharing is set to public read only or private for the object
What settings can you specify on a profile? (2 answers)
A. Revoke sharing permissions
B. Enable record types
C. Enable create read, create, edit, and delete on objects
D. Specify language
B. Enable record types
C. Enable create read, create, edit, and delete on objects
Record Types allow developers to associate \_\_\_\_\_\_\_\_\_\_ and \_\_\_\_\_\_\_\_\_\_\_ to users based on their profile (2 answers) A. Picklist values B. Role C. Business Processes D. Hidden Characters E. Subclassing F. Forecasting G. Error Handling
A. Picklist values
C. Business Processes
Which of these is not a standard profile? A. Developer B. Contract Manager C. Read only D. Solution Manager
A. Developer
1. When designing an application, a developer needs to make a field editable to all profiles. In field level security what settiings should be used in this situation. A. Disable Visible and Read-Only B. Disable Visible but Enable Read-Only C. Enable Visible but Disable Read-Only D. Enable Visible and Read-Only
C. Enable Visible but Disable Read-Only
Encrypted fields are editable regardless of whether the user has the “View Encrypted Data” permission.
A. True
B. False
A. True
Roll-up summary and formula fields are always read only on detail pages and not available on edit pages
A. True
B. False
C. Only applicable to Roll-up Summary Fields
D. Only applicable to Formula Fields
A. True
A field hidden using Field Level Security is available from A. Search B. Reports C. Page Layout D. Console E. None of the Above
E. None of the Above
\_\_\_\_ sharing rules determine who to share records with based on field values in records. (Spring'11 Release) A. Criteria-based B. Data - based C. Object - based D. Manual E. Apex
A. Criteria-based
Sharing rules can never be stricter than your organization-wide default settings?
A. True
B. False
A. True
Territory management only affects accounts and the standard objects that have a master-detail relationship to accounts.
A. True
B. False
A. True
Notes and attachments marked as private via the Private checkbox are accessible only to the person who attached them and to the person above them in the Role Hierarchy.
A. True
B. False
B. False
To delete a note or attachment, you must be the owner of the note or attachment or an administrator with the “Modify all Data” permission.
A. True
B. False
A. True
A queue is a location where records can be routed to await processing by a group member
A. True
B. False
A. True
An organization has custom objects to track job positions and job position salaries. Everyone in the organization can view the positions. However, only select users can view the salary records. What steps should a developer take to ensure the requirement is fulfilled?
A. Create a lookup relationship between positions and salaries; define access on position and private access on salary
B. Create a master-detail relationship between positions and salaries; define public access on position and private access on salary.
C. Create a master-detail relationship between positions and salaries; define private access on position and create sharing rules on salary.
D. Create a lookup relationship between positions and salaries; define public access on position and public access on salary; create sharing rules on salary to restrict visibility.
A. Create a lookup relationship between positions and salaries; define public read-only access on position and private access on salary
Encrypted fields provide data masking for all users except those with \_\_\_\_ permission A. View Encrypted Data B. View All Data C. Modify All data D. Administrator
A. View Encrypted Data
From Salesforce online help: The value of an encrypted field is only visible to users that have the “View Encrypted Data” permission.
Manual Sharing can be granted by Owners, anyone above the Owners in the Role Hierarchy, and System Administrators
A. True
B. False
B. False
Profile controls Login Hours and Login IP Ranges
A. Yes this is correct
B. No, Profile can only contact Login hours. IP Ranges is not controlled here
C. No, Profile can only control IP Ranges, and not login hours
D. No, Profile does not control login hours or Login IP Ranges
A. Yes this is correct
Lacking the “Read” permission for an objects means that the user will not be able to access it at all
A. True
B. False
A. True
When creating a sharing rule, what entities can be shared with? (3 answers) A. Public Groups B. Users C. Roles D. Roles and Subordinates E. Queues
A. Public Groups
C. Roles
D. Roles and Subordinates
Organization wide access levels are: A. Public Read/Write B. Public Read Only C. Private Read /Write D. Private Read only E. Private
A. Public Read/Write
B. Public Read Only
E. Private
A user must be associated to at least one Role
A. True
B. False
A. True
All these statements are true regarding Sharing Rules, except:
A. Automatic exceptions to Organization Wide Defaults for a particular group of users
B. Never permitted to be more restrictive than Organization Wide Default settings
C. Used to open up access to records
D. Can to be more restrictive than Organization Wide Defaults
D. Can to be more restrictive than Organization Wide Defaults
Organization Wide Defaults are (select all that apply)
A. Security settings that define the baseline level of access to records that you do not own
B. Used to restrict access to data
C. Defined for Standard Objects
D. Defined for Custom Objects
E. Defined for Unclaimed objects
A. Security settings that define the baseline level of access to records that you do not own
B. Used to restrict access to data
C. Defined for Standard Objects
D. Defined for Custom Objects
What is true about Role Hierarchy? (select all that apply) A. Controls data visibility B. Controls record rollup for reporting C. Is the company's Organization chart D. Controls Custom Apps Record Types
A. Controls data visibility
B. Controls record rollup for reporting
C. Is the company’s Organization chart
Which of the following is a standard Profile? A. Sales User B. Marketing User C. Invoice Manager D. Contract Manager
B. Marketing User
D. Contract Manager
Users can have access to more than one Record Type for an object
A. True
B. False
A. True
Any member of a queue has the same access to all records in the queue that an owner would have.
A. True
B. False
C. Not always
A. True
Profiles is a sub-set of the Sharing Model
A. True
B. False
A. True
Custom Objects can be owned by queues
A. True
B. False
A. True
A queue is a location where records can be routed to wait processing by a group member
A. True
B. False
C. Maybe sometimes
A. True
Public Groups can be made of any combination of the following, EXCEPT (3 answers) A. Users B. Roles C. Queues D. Roles and Subordinated E. Public Groups
A. Users
B. Roles
C. Queues
Criteria based sharing rules for Text and Text Area fields are case-sensitive.
A. True
B. False
A. True
A corresponding list view is also automatically created, when a queue is created in Salesforce.com.
A. True
B. False
A. True
